CVE-2025-69618

216.73.217.174

· Published 04/02/2026 15:16 · Modified 04/02/2026 16:33

Labels: CVE-2025-69618 2026-02-04 CVE-2025-69618 [email protected]

Essential information

Published: 04/02/2026 15:16
Modified: 04/02/2026 16:33
Author: —
Creator: —
CISA KEV: No
CWE: —
CVSS vector

Description

An arbitrary file overwrite vulnerability in the file import process of Tarot, Astro & Healing v11.4.0 allows attackers to overwrite critical internal files, potentially leading to arbitrary code execution or exposure of sensitive information.

NVD status

Status: Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
tarot / tarot	`cpe:2.3:a:tarot:tarot:11.4.0:::::::*`
astro / astro	`cpe:2.3:a:astro:astro:11.4.0:::::::*`
healing / healing	`cpe:2.3:a:healing:healing:11.4.0:::::::*`

CVE-2025-69618

Essential information

Description

NVD status

Affected products (CPE)

References