CVE-2026-25872

Vulnerability

Analysis

CVE-2026-25872 affects JUNG Smart Panel KNX firmware versions L1.12.22 and earlier. The embedded web interface fails to properly validate file path input from users, allowing an unauthenticated attacker to traverse directories outside of the intended web root [1][3]. This path traversal vulnerability stems from insufficient sanitization of user-supplied paths, a classic for embedded devices lacking rigorous input handling.

Exploitation

The attack requires no authentication and can be performed remotely over the network. By sending crafted HTTP requests containing traversal sequences (e.g., ../), an attacker can navigate the filesystem within the privileges of the web server process [3]. No special prerequisites or prior access are needed, making this a critical attack surface for any exposed device.

Impact

Successful exploitation leads to disclosure of arbitrary files accessible by the web server, including system configuration files and other sensitive information [1][2]. This could expose passwords, network settings, or proprietary configuration data that may enable further compromise of the device or the broader KNX smart building infrastructure.

Mitigation

JUNG has not released a public patch as of February 2026. Users should restrict network access to the Smart Panel’s web interface to trusted networks only and consider applying workarounds such as input filtering if feasible. The vendor’s advisory or firmware update should be monitored for a permanent fix [2][3].