CVE-2025-12003

CVSS v4.0

8.2

Vector

AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Name of the Vulnerable Software and Affected Versions ASUS Router WebDAV (affected versions not specified)

Description A path traversal issue exists in WebDAV, potentially allowing remote attackers without authentication to compromise the integrity of the device. The issue may allow unauthorized access to files and directories on the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Missing Authentication

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-306CWE-22

Related Identifiers

CVE-2025-12003

Affected Products

Asus Router Webdav

CVE-2025-12003

Weakness Enumeration

Related Identifiers

Affected Products

References · 4