CVE-2025-5598 PUBLISHED

WF Steuerungstechnik GmbH - airleader MASTER - Path Traversal

Assigner: NCSC.ch
Reserved: 04.06.2025 Published: 04.06.2025 Updated: 04.06.2025

Path Traversal vulnerability in WF Steuerungstechnik GmbH airleader MASTER allows Retrieve Embedded Sensitive Data.This issue affects airleader MASTER: 3.0046.

Metrics

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N
CVSS Score: 9.2

Product Status

Vendor WF Steuerungstechnik GmbH
Product airleader MASTER
Versions Default: unaffected
  • Version 3.0046 is affected
  • Version 3.0057 is unaffected

References

Problem Types

  • CWE-35 Path Traversal CWE

Impacts

  • CAPEC-37 Retrieve Embedded Sensitive Data