| Summary | Nozomi Networks Labs identified a CWE-23: Relative Path Traversal (Zip Slip) in Waterfall WF-500 RX Host in version 7.9.1.0 R2502171040 that allows attackers with access to the TX Host to execute code on the RX Host when a MySQL connector is configured and file compression is enabled. |
|---|---|
| Publication Date | May 29, 2026, 9:16 p.m. |
| Registration Date | May 30, 2026, 4:14 a.m. |
| Last Update | May 29, 2026, 11:06 p.m. |