PT-2026-7476 · Jung · Jung Smart Panel Knx
Gjoko Krstic
·
Published
2026-02-10
·
Updated
2026-02-11
·
CVE-2026-25872
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
JUNG Smart Panel KNX firmware versions prior to L1.12.22
Description
The JUNG Smart Panel KNX firmware does not properly validate file path input in its embedded web interface. This allows remote, unauthenticated attackers to access arbitrary files on the underlying filesystem within the context of the web server. Successful exploitation may lead to the disclosure of system configuration files and other sensitive information. The vulnerable component is the embedded web interface.
Recommendations
Update the JUNG Smart Panel KNX firmware to a version later than L1.12.22.
Exploit
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Jung Smart Panel Knx