CVE-2025-10273 is a path traversal vulnerability identified in erjinzhi 10OA version 1.0, specifically affecting the /view/file.aspx endpoint. The vulnerability arises from improper validation or sanitization of the 'File' argument, allowing an attacker to manipulate the file path input and traverse directories outside the intended scope. This can enable unauthorized access to files on the server's filesystem that should otherwise be restricted. The vulnerability requires low attack complexity and only limited privileges (PR:L), with no user interaction needed. The attack vector is adjacent network (AV:A), meaning exploitation is possible from a network location adjacent to the vulnerable system, such as within the same local network or VPN. The CVSS 4.0 base score is 5.1 (medium severity), reflecting limited confidentiality impact (VC:L) and no impact on integrity or availability. No authentication bypass or privilege escalation is indicated, but the ability to read arbitrary files can expose sensitive configuration files, credentials, or other critical data. The vendor was contacted but did not respond, and no patches are currently available. Public exploits exist, increasing the risk of exploitation despite no known active exploitation in the wild at this time. The vulnerability's presence in a web-based office automation product (10OA) suggests potential exposure in enterprise environments where this software is deployed for document management or workflow automation.

For European organizations using erjinzhi 10OA 1.0, this vulnerability poses a moderate risk. Successful exploitation can lead to unauthorized disclosure of sensitive internal documents, configuration files, or credentials, potentially facilitating further attacks such as privilege escalation or lateral movement. Given that the attack vector is adjacent network, internal threat actors or attackers who have gained limited network access could exploit this flaw. The lack of vendor response and absence of patches increases the window of exposure. Organizations in regulated sectors (finance, healthcare, government) could face compliance issues if sensitive data is leaked. Additionally, the exposure of internal files could undermine operational security and trust. Although the vulnerability does not directly impact system integrity or availability, the confidentiality breach can have cascading effects on organizational security posture.

European organizations should immediately audit their networks to identify any deployments of erjinzhi 10OA 1.0. If found, they should isolate these systems from untrusted networks to limit adjacent network access. As no official patch is available, organizations should implement compensating controls such as web application firewalls (WAFs) with custom rules to detect and block path traversal patterns targeting /view/file.aspx. Input validation and filtering at the network perimeter or proxy level can reduce exploit attempts. Monitoring and logging access to the vulnerable endpoint should be enhanced to detect suspicious activity. If possible, consider disabling or restricting access to the vulnerable functionality until a vendor patch or workaround is provided. Organizations should also engage with erjinzhi for updates and consider alternative solutions if the vendor remains unresponsive. Regular security awareness training for internal users about lateral movement risks can further reduce exploitation likelihood.