cvedb.io
CVE-2025-10398
MEDIUM · CVSS 6.3
EPSS exploitation probability: 0%
Published 2025-09-14T12:15:30.807 · Last modified 2026-06-17T08:28:14.430

Summary

A security flaw has been discovered in fcba_zzm ics-park Smart Park Management System 2.0. This vulnerability affects unknown code of the file FileUploadUtils.java. The manipulation of the argument File results in unrestricted upload. The attack can be launched remotely. The exploit has been released to the public and may be exploited.

Affected products

fcba_zzm — smart_park_management_system

Does this affect you?

Add your gear to cvedb and we'll alert you only when fcba_zzm ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.