Path Traversal in Altumcode 66biolinks
CVE-2025-69601
A directory traversal (Zip Slip) vulnerability exists in the “Static Sites” feature of 66biolinks v44.0.0 by AltumCode. Uploaded ZIP archives are automatically extracted without validating or sanitizing file paths. An attacker can include…
Vulnerability class: Path Traversal (Directory Traversal)
EPSS: 0.006 (45.7th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N.
Affected products
- Altumcode 66biolinks — versions 44.0.0
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (Exploit, Third Party Advisory)
Frequently asked questions
- What is CVE-2025-69601?
- CVE-2025-69601 is a medium-severity vulnerability in Altumcode 66biolinks, classified under Path Traversal. CVSS score: 6.5/10. Published 2026-01-28.
- How severe is CVE-2025-69601?
- Medium severity. CVSS v3 base score is 6.5 out of 10.