CVE-2025-34119

Public Exploit
EasyCafe Server 2.2.14 Remote File Disclosure via Opcode 0x43

Description

A remote file disclosure vulnerability exists in EasyCafe Server 2.2.14, exploitable by unauthenticated remote attackers via TCP port 831. The server listens for a custom protocol where opcode 0x43 can be used to request arbitrary files by absolute path. If the file exists and is accessible, its content is returned without authentication. This flaw allows attackers to retrieve sensitive files such as system configuration, password files, or application data.

Category

8.8
CVSS
Severity: High
CVSS 4.0 •
EPSS 0.23%
Third-Party Advisory vulncheck.com
Affected: Tinasoft EasyCafe Server
Published at:
Updated at:

References

Link Tags
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/misc/easycafe_server_fileaccess.rb exploit
https://www.exploit-db.com/exploits/39102 exploit
https://www.vulncheck.com/advisories/easy-cafe-server-remote-file-disclosure third party advisory

Frequently Asked Questions

What is the severity of CVE-2025-34119?
CVE-2025-34119 has been scored as a high severity vulnerability.
How to fix CVE-2025-34119?
To fix CVE-2025-34119, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2025-34119 being actively exploited in the wild?
It is possible that CVE-2025-34119 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-34119?
CVE-2025-34119 affects Tinasoft EasyCafe Server.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.