Arbitrary File Write Vulnerability in Stirling-PDF Web Application
CVE-2026-27625

8.1HIGH

Key Information:

Vendor
CVE Published:
20 March 2026

What is CVE-2026-27625?

In Stirling-PDF versions prior to 2.5.2, the application exposes the /api/v1/convert/markdown/pdf endpoint, allowing authenticated users to extract user-uploaded ZIP entries without proper path validation. This lack of oversight permits users to write files outside the designated working directory, potentially leading to unauthorized file manipulation and overwriting of sensitive data. The vulnerability could significantly jeopardize data integrity as it exploits the permissions assigned to the Stirling-PDF process user, making it essential for users to upgrade to version 2.5.2 or later to mitigate these security risks.

Affected Version(s)

Stirling-PDF < 2.5.2

References

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.