CVE-2025-54927 | THREATINT

Description

CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause unauthorized access to sensitive files when an authenticated attackers uses a crafted path input that is processed by the system.

PUBLISHED Reserved 2025-08-01 | Published 2025-08-20 | Updated 2025-08-20 | Assigner schneider

MEDIUM: 4.9CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Problem types

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

Default status

unaffected

Version 2022

affected

Version 2023

affected

Version 2024

affected

Version 2024 R2

affected

Default status

unaffected

Version 2022 w/ Advanced Reporting Module

affected

Version 2024 w/ Advanced Reporting Module

affected

References

download.schneider-electric.com/...Name=SEVD-2025-224-02.pdf

cve.org (CVE-2025-54927)

nvd.nist.gov (CVE-2025-54927)

Download JSON