CVE-2025-27028

Name of the Vulnerable Software and Affected Versions: Radiflow iSAP Smart Collector version 1.20

Description: The issue allows a deprivileged Linux user to read the entire file system content, including files belonging to other users and having restricted access, such as the root password hash.

Recommendations: For Radiflow iSAP Smart Collector version 1.20, consider restricting access to sensitive files and directories to minimize the risk of exploitation until a patch is available. As a temporary workaround, review and adjust file system permissions to limit access to sensitive data.