CVE-2025-4185

Name of the Vulnerable Software and Affected Versions Wangshen SecGate 3600 version 2024

Description A critical vulnerability has been found in Wangshen SecGate 3600, affecting the processing of the file ?g=obj area export save. The manipulation of the argument file name leads to path traversal. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Recommendations As a temporary workaround, consider restricting access to the file ?g=obj area export save until a patch is available. Avoid using the argument file name in the affected file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.