| Summary | Nozomi Networks Labs identified a CWE-23: Relative Path Traversal in the Administration WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to delete arbitrary files on the Host machines. |
|---|---|
| Publication Date | May 29, 2026, 9:16 p.m. |
| Registration Date | May 30, 2026, 4:14 a.m. |
| Last Update | May 29, 2026, 11:06 p.m. |