What is CVE-2018-25312?

CVE-2018-25312 is a medium-severity vulnerability in Lifesize Clearsea, classified under Path Traversal. CVSS score: 6.5/10. Published 2026-04-29.

How severe is CVE-2018-25312?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Path Traversal in Lifesize Clearsea

CVE-2018-25312

LifeSize ClearSea 3.1.4 contains directory traversal vulnerabilities that allow authenticated attackers to download and upload arbitrary files by manipulating path parameters in the smartgui interface. Attackers can exploit the upload endp…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.013 (79.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

Affected products

Lifesize Clearsea — versions 3.1.4

Weakness classification (CWE)

CWE-22 — Path Traversal

References

ExploitDB-44390 (exploit)
VulnCheck Advisory: LifeSize ClearSea 3.1.4 Directory Traversal Remote Code Execution (third-party-advisory)

Frequently asked questions

What is CVE-2018-25312?: CVE-2018-25312 is a medium-severity vulnerability in Lifesize Clearsea, classified under Path Traversal. CVSS score: 6.5/10. Published 2026-04-29.
How severe is CVE-2018-25312?: Medium severity. CVSS v3 base score is 6.5 out of 10.