High severityNVD Advisory· Published Apr 16, 2025· Updated Apr 15, 2026

CVE-2025-1982

Description

Local File Inclusion vulnerability in Ready's attachment upload panel allows low privileged user to provide link to a local file using the file:// protocol thus allowing the attacker to read content of the file. This vulnerability can be use to read content of system files.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cert.pl/en/posts/2025/04/CVE-2025-1980nvd
cert.pl/posts/2025/04/CVE-2025-1980nvd
ready-os.com/pl/nvd

News mentions

No linked articles in our index yet.

cvss	0.455
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000