Unrated severityNVD Advisory· Published Mar 11, 2025· Updated Mar 11, 2025
CVE-2025-27397
CVE-2025-27397
Description
A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0). Affected devices do not properly limit user controlled paths to which logs are written and from where they are read. This could allow an authenticated highly-privileged remote attacker to read and write arbitrary files in the filesystem, if and only if the malicious path ends with 'log' .
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2< V4.0+ 1 more
- (no CPE)range: < V4.0
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.