Security ID : QSA-25-43
Vulnerability in QuMagie
Release date : November 8, 2025
CVE identifier : CVE-2025-58464
Affected products: QuMagie 2.7.x
Severity
Important
Status
Resolved
Summary
A relative path traversal vulnerability has been reported to affect QuMagie. If exploited, a remote attacker can read the contents of unexpected files or system data.
We have already fixed the vulnerability in the following version:
| Affected Product | Fixed Version |
| QuMagie 2.7.x | QuMagie 2.7.3 and later |
Recommendation
To fix the vulnerability, we recommend updating QuMagie to the latest version.
Updating QuMagie
- Log on to QTS or QuTS hero as an administrator.
- Open App Center and then click
.
A search box appears. - Type "QuMagie" and then press ENTER.
QuMagie appears in the search results. - Click Update.
A confirmation message appears.
Note: The Update button is not available if your QuMagie is already up to date. - Click OK.
The system updates the application.
Attachment
Acknowledgements: Tim Coen
Revision History:
V1.0 (November 8, 2025) - Published
