PT-2025-49118 · National Instruments · Ni System Web Server
Published
2025-12-04
·
Updated
2025-12-04
·
CVE-2025-12097
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
NI System Web Server versions prior to 2013
Description
A relative path traversal issue exists in the NI System Web Server, potentially leading to information disclosure. An attacker can exploit this by sending a specially crafted request to the server, which allows them to read arbitrary files.
Recommendations
Update to a version of NI System Web Server released in 2013 or later.
Fix
Relative Path Traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ni System Web Server