Unrated severityNVD Advisory· Published Aug 21, 2023· Updated Jul 19, 2025
Authneticated Path Traversal in Danfoss AK-SM800A
CVE-2023-25914
Description
Due to improper restriction, authenticated attackers could retrieve and read system files of the underlying server through the XML interface. The information that can be read can lead to a full system compromise.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- csirt.divd.nl/CVE-2023-25914mitrethird-party-advisory
- csirt.divd.nl/DIVD-2023-00025mitrethird-party-advisory
News mentions
0No linked articles in our index yet.