Main Vulnerability Database Exploits ID:12698 - Exploit for Path traversal in QConvergeConsole - CVE-2025-6793

ID:12698 - Exploit for Path traversal in QConvergeConsole - CVE-2025-6793

Published: May 11, 2026

Vulnerability identifier: #VU113582

Vulnerability risk: High

CVE-ID: CVE-2025-6793

CWE-ID: CWE-22

Exploitation vector: Remote access

Vulnerable software:
QConvergeConsole

Link to public exploit:

https://www.rapid7.com/db/modules/auxiliary/gather/qconvergeconsole_traversal

Vulnerability description

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences within the QLogicDownloadImpl class. A remote attacker can send a specially crafted HTTP request and read/ delete arbitrary files on the system.

Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

ID:12698 - Exploit for Path traversal in QConvergeConsole - CVE-2025-6793

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human