Unrated severityNVD Advisory· Published Nov 6, 2025· Updated Nov 17, 2025

Advantech WebAccess/VPN < 1.1.5 Path Traversal via AjaxStandaloneVpnClientsController.ajaxDownloadRoadWarriorConfigFileAction()

CVE-2025-34238

Description

Advantech WebAccess/VPN versions prior to 1.1.5 contain an absolute path traversal via AjaxStandaloneVpnClientsController.ajaxDownloadRoadWarriorConfigFileAction() that allows an authenticated network administrator to cause the application to read and return the contents of arbitrary files the web user (www-data) can access.

Affected products

Advantech/Webaccessllm-fuzzy
Range: <1.1.5
Advantech/WebAccess/VPNv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

icr.advantech.com/support/router-models/download/511/sa-2025-01-vpn-portal-2025-11-06.pdfmitrevendor-advisorypatch
www.vulncheck.com/advisories/advantech-webaccess-vpn-path-traversal-via-ajaxstandalonevpnclientscontrollermitrethird-party-advisory
icr.advantech.com/download/softwaremitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000