High severity7.5NVD Advisory· Published Oct 27, 2025· Updated Apr 15, 2026
CVE-2025-12055
CVE-2025-12055
Description
HYDRA X, MIP 2 and FEDRA 2 of MPDV Mikrolab GmbH suffer from an unauthenticated local file disclosure vulnerability in all releases until Maintenance Pack 36 with Servicepack 8 (week 36/2025), which allows an attacker to read arbitrary files from the Windows operating system. The "Filename" parameter of the public $SCHEMAS$ ressource is vulnerable and can be exploited easily.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: < Maintenance Pack 36 with Servicepack 8 (week 36/2025)
- Range: < Maintenance Pack 36 with Servicepack 8 (week 36/2025)
- Range: < Maintenance Pack 36 with Servicepack 8 (week 36/2025)
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.