Lucene search
K

1092 matches found

NVD
NVD
added 2025/10/23 10:15 p.m.4 views

CVE-2025-58456

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and read arbitrary files on the target machine...

8.2CVSS0.00566EPSS
Exploits0References4
CVE
CVE
added 2025/10/23 10:12 p.m.14 views

CVE-2025-58429

Productivity Suite software version 4.4.1.19 contains a relative path traversal flaw that allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary files on the target machine. Several connected sources describe this as a ZipSlip–style v...

8.3CVSS6.9AI score0.00562EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/10/23 10:12 p.m.6 views

CVE-2025-58429 AutomationDirect Productivity Suite Relative Path Traversal

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary files on the target machine...

8.3CVSS0.00562EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/10/23 10:9 p.m.3 views

CVE-2025-58078 AutomationDirect Productivity Suite Relative Path Traversal

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and write files with arbitrary data on the target machine...

8.3CVSS6.9AI score0.00562EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/10/23 10:5 p.m.6 views

CVE-2025-58456 AutomationDirect Productivity Suite Relative Path Traversal

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and read arbitrary files on the target machine...

8.2CVSS0.00566EPSS
Exploits0References4
CVE
CVE
added 2025/10/23 9:46 p.m.14 views

CVE-2025-62498

CVE-2025-62498 corresponds to a ZipSlip-style relative path traversal in AutomationDirect Productivity Suite 4.4.1.19. Multiple connected sources (Red Hat CVE entry, ENISA EUVD, CVE listing, and PT-Security) describe that an attacker who can tamper with a productivity project can cause arbitrary ...

8.8CVSS7.5AI score0.00506EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/23 12:0 a.m.3 views

AutomationDirect Productivity Suite 安全漏洞

AutomationDirect Productivity Suite is a programmable logic controller programming software from AutomationDirect, Inc. A security vulnerability exists in AutomationDirect Productivity Suite version 4.4.1.19, which stems from a relative path traversal vulnerability that could lead to the executio...

8.8CVSS6.8AI score0.00506EPSS
Exploits0References3
NVD
NVD
added 2025/10/17 4:16 a.m.3 views

CVE-2025-11898

Agentflow developed by Flowring has an Arbitrary File Reading vulnerability, allowing unauthenticated remote attackers to exploit Relative Path Traversal to download arbitrary system files...

8.7CVSS0.00752EPSS
Exploits0References2
CVE
CVE
added 2025/10/17 3:41 a.m.10 views

CVE-2025-11898

Flowring’s Agentflow is affected by CVE-2025-11898, an Arbitrary File Reading vulnerability exposed via Relative Path Traversal. Unauthenticated remote attackers can download arbitrary system files, highlighting a high confidentiality impact and network-based, low-complexity exploitation (no user...

8.7CVSS6.9AI score0.00752EPSS
Exploits0References2
NVD
NVD
added 2025/10/16 6:15 p.m.7 views

CVE-2025-34518

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain a relative path traversal vulnerability in getfilecontent.php that allows an attacker to read arbitrary files. Ilevia has declined to service this vulnerability, and recommends that customers not expose port 8080 to the internet...

8.7CVSS0.00604EPSS
Exploits3References3
OSV
OSV
added 2025/10/16 6:15 p.m.6 views

CVE-2025-34518

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain a relative path traversal vulnerability in getfilecontent.php that allows an attacker to read arbitrary files. Ilevia has declined to service this vulnerability, and recommends that customers not expose port 8080 to the internet...

7.5CVSS5.9AI score0.00604EPSS
Exploits3References3
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.4 views

Ilevia EVE X1 Server 安全漏洞

Ilevia EVE X1 Server is a smart home and building automation from Ilevia, Italy. A security vulnerability exists in Ilevia EVE X1 Server 4.7.18.0.eden and earlier versions, which stems from the presence of a relative path traversal in getfilecontent.php, which could lead to reading arbitrary file...

8.7CVSS6.7AI score0.00604EPSS
Exploits3References4
Snyk
Snyk
added 2025/10/14 3:42 p.m.2 views

Relative Path Traversal

Overview Affected versions of this package are vulnerable to Relative Path Traversal via the unpack function during the artifact extraction due to the lack of header.Name validation in the said function. An attacker can create or overwrite arbitrary files within system directories by supplying a...

8.8CVSS7.2AI score0.00539EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/10/11 7:23 a.m.8 views

CVE-2025-21048

Relative path traversal in Knox Enterprise prior to SMR Oct-2025 Release 1 allows local attackers to execute arbitrary code...

7.8CVSS7.1AI score0.0016EPSS
Exploits0References1
NVD
NVD
added 2025/10/10 7:15 a.m.9 views

CVE-2025-21048

Relative path traversal in Knox Enterprise prior to SMR Oct-2025 Release 1 allows local attackers to execute arbitrary code...

7.8CVSS0.0016EPSS
Exploits0References1
OSV
OSV
added 2025/10/10 7:15 a.m.6 views

CVE-2025-21048

Relative path traversal in Knox Enterprise prior to SMR Oct-2025 Release 1 allows local attackers to execute arbitrary code...

7.8CVSS6AI score0.0016EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/10 6:33 a.m.8 views

CVE-2025-21048

Relative path traversal in Knox Enterprise prior to SMR Oct-2025 Release 1 allows local attackers to execute arbitrary code...

6.7CVSS0.0016EPSS
Exploits0References1
CVE
CVE
added 2025/10/10 6:33 a.m.20 views

CVE-2025-21048

CVE-2025-21048 describes a relative path traversal in Knox Enterprise prior to SMR Oct-2025 Release 1, enabling local attackers to execute arbitrary code. Affected product: Knox Enterprise (Samsung). Root cause: traversal of unauthorized file paths in the software component handling input paths. ...

7.8CVSS6.7AI score0.0016EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-26945

Malware in sbrugna...

8.5CVSS6.6AI score0.01191EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-0686

Malware in sbrugna...

7.5CVSS6.8AI score0.02483EPSS
Exploits1References8
Rows per page
Query Builder