Authentication Bypass Vulnerability in FileZ Client Application
CVE-2025-6249

8.4HIGH

Key Information:

Vendor

Lenovo
Status
Filez Client
Vendor
CVE Published:
17 July 2025

What is CVE-2025-6249?

The FileZ client application has a vulnerability that allows a local attacker with elevated permissions to bypass authentication mechanisms, potentially gaining unauthorized access to sensitive application data. This could lead to serious security breaches, making it crucial for users to address this vulnerability promptly.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

FileZ Client 0 < 11.1.0.14

References

https://www.filez.com/securityPolicy/3.html?1751965890

CVSS V4

Score:
8.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.