Unrestricted uploading of dangerous file types to AvePoint products
- DocAve 6.13.2;
- Perimeter 1.12.3;
- Compliance Guardian 4.7.1 and earlier versions.
INCIBE has coordinated the publication of a high-severity vulnerability affecting AvePoint's DocAve, Perimeter, and Compliance Guardian, which manage and back up content in SharePoint/M365, control and protect access to data in the cloud, and classify and secure sensitive information for regulatory compliance. The vulnerability was discovered by Chetani Mesa Guzmán and Marcos Díaz Castiñeiras.
This vulnerability has been assigned the following code, CVSS v4.0 base score, CVSS vector, and CWE vulnerability type:
- CVE-2025-10544: CVSS v4.0: 8,6 | CVSS AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N | CWE-434
- Upgrade to the latest version of DocAve (6.13.3):
- DocAve 6.13.3 Manager installation package: 6.13.3 manager package.
- DocAve Agent 6.13.3 Installation Package: Agent Package 6.13.3.
- DocAve 6.13.3 Update Package: Update Package 6.13.3.
- Update to the latest version of Perimeter (1.12.4):
- Perimeter 1.12.4 administrator and agent installation package: Package 1.12.4.
- Perimeter 1.12.4 update package: Update package 1.12.4.
- Install the patch on Compliance Guardian Manager servers:
- Compliance Guardian Manager patch: Compliance Guardian Manager patch.
CVE-2025-10544: unrestricted file upload vulnerability in DocAve 6.13.2, Perimeter 1.12.3, Compliance Guardian 4.7.1, and earlier versions, allowing administrator users to upload files without proper validation. An attacker could exploit this vulnerability by uploading malicious files that compromise the system. In addition, it is vulnerable to Path Traversal, which allows files to be written to arbitrary directories within the web root.
