NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2025-41271

Summary	Nozomi Networks Labs identified a CWE-23: Relative Path Traversal in the Console WebUI in Waterfall WF-500 TX and RX Hosts in version 7.9.1.0 R2502171040 that allows remote unauthenticated attackers to read arbitrary files from the device.
Publication Date	May 29, 2026, 9:16 p.m.
Registration Date	May 30, 2026, 4:14 a.m.
Last Update	May 29, 2026, 11:06 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2025-41271	prodsec@nozominetworks.com

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-23	相対的パストラバーサル	https://cwe.mitre.org/data/definitions/23.html
2	CWE-23	相対的パストラバーサル	https://cwe.mitre.org/data/definitions/23.html