CVE-2025-1555

High

Published: 21 February 2025

Published

21 February 2025

Modified

29 January 2026

KEV Added

—

Patch

—

CVSS Score 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

EPSS Score 0.0004 12.2th percentile

Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-1555 is a high-severity Improper Access Control (CWE-284) vulnerability in Hzmanyun Education And Training System. Its CVSS base score is 7.3 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 12.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Threat & Defense at a Glance

What attackers do: exploitation maps to Exploit Public-Facing Application (T1190) and 2 other techniques. What defenders deploy: see the NIST 800-53 controls recommended below.

Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

SI-10 Information Input Validation good match

prevent

SI-10 directly prevents unrestricted file uploads by requiring validation of the manipulated file argument in the saveImage function to ensure only authorized and safe files are processed.

SI-2 Flaw Remediation good match

prevent

SI-2 mandates timely identification, reporting, and correction of flaws like this critical unrestricted upload vulnerability in the hzmanyun system.

SI-3 Malicious Code Protection partial match

preventdetect

SI-3 provides malicious code protection mechanisms to scan and block dangerous files that could be uploaded through the saveImage vulnerability.

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access

Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.

attack.mitre.org →

T1105 Ingress Tool Transfer Command And Control

Adversaries may transfer tools or other files from an external system into a compromised environment.

attack.mitre.org →

T1505.003 Web Shell Persistence

Adversaries may backdoor web servers with web shells to establish persistent access to systems.

attack.mitre.org →

Why these techniques?

Unrestricted file upload in public-facing web app directly enables remote exploitation (T1190) and arbitrary file ingress (T1105), commonly used to deploy web shells (T1505.003).

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

NVD Description

A vulnerability classified as critical was found in hzmanyun Education and Training System 3.1.1. This vulnerability affects the function saveImage. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been…

disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Deeper analysisAI

CVE-2025-1555 is a critical vulnerability in hzmanyun Education and Training System 3.1.1, affecting the saveImage function. It enables unrestricted file upload through manipulation of the file argument, classified under CWE-284 (Improper Access Control) and CWE-434 (Unrestricted Upload of File with Dangerous Type). The issue carries a CVSS v3.1 base score of 7.3 (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L) and was published on 2025-02-21.

Remote attackers can exploit this vulnerability without privileges or user interaction, initiating the attack over the network with low complexity. Successful exploitation allows uploading arbitrary files, resulting in low impacts to confidentiality, integrity, and availability.

Advisories from VulDB and a related GitHub report indicate that the vendor was contacted early about the disclosure but provided no response or patches. The exploit has been publicly disclosed and may be used by attackers.

Details

CWE(s): CWE-284 CWE-434

Affected Products

hzmanyun

education and training system

3.1.1

CVEs Like This One

CVE-2025-1676Same product: Hzmanyun Education And Training System

CVE-2025-1947Same product: Hzmanyun Education And Training System

CVE-2025-1946Same product: Hzmanyun Education And Training System

CVE-2025-1166Shared CWE-284, CWE-434

CVE-2026-4221Shared CWE-284, CWE-434

CVE-2025-1818Shared CWE-284, CWE-434

CVE-2026-2977Shared CWE-284, CWE-434

CVE-2025-0722Shared CWE-284, CWE-434

CVE-2025-2350Shared CWE-284, CWE-434

CVE-2026-1424Shared CWE-284, CWE-434

References

https://github.com/Rain1er/report/blob/main/CDG/bnhiMg%3D%3D.md
Broken Link · cna@vuldb.com
https://vuldb.com/?ctiid.296506
Permissions Required, VDB Entry · cna@vuldb.com
https://vuldb.com/?id.296506
Third Party Advisory, VDB Entry · cna@vuldb.com
https://vuldb.com/?submit.496932
Third Party Advisory, VDB Entry · cna@vuldb.com
https://github.com/Rain1er/report/blob/main/CDG/bnhiMg%3D%3D.md
Broken Link · 134c704f-9b21-4f2e-91b3-4a467353bcc0