Linknat VOS Manager Path Traversal File Disclosure_CVE-2025-34118

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Description

A path traversal vulnerability exists in Linknat VOS Manager versions prior to 2.1.9.07, including VOS2009 and early VOS3000 builds, that allows unauthenticated remote attackers to read arbitrary files on the server. The vulnerability is accessible via multiple localized subpaths such as '/eng/', '/chs/', or '/cht/', where the 'js/lang_en_us.js' or equivalent files are loaded. By injecting encoded traversal sequences such as '%c0%ae%c0%ae' into the request path, attackers can bypass input validation and disclose sensitive files.

Basic Information

ID CVE-2025-34118

Source VulnCheck

Published Jul 16, 2025 at 21:03

Modified Jul 17, 2025 at 20:02

Affected Product

Vendor Linknat Technology

Product VOS Manager

Version *

Affected Versions Linknat Technology VOS Manager *
Linknat Technology VOS Manager *

CWE Classification

CWE-22 CWE-20

References

{
    "lastseen": "",
    "description": "A path traversal vulnerability exists in Linknat VOS Manager versions prior to 2.1.9.07, including VOS2009 and early VOS3000 builds, that allows unauthenticated remote attackers to read arbitrary files on the server. The vulnerability is accessible via multiple localized subpaths such as '/eng/', '/chs/', or '/cht/', where the 'js/lang_en_us.js' or equivalent files are loaded. By injecting encoded traversal sequences such as '%c0%ae%c0%ae' into the request path, attackers can bypass input validation and disclose sensitive files.",
    "published": "2025-07-16T21:03:53.676Z",
    "modified": "2025-07-17T20:02:15.488Z",
    "type": "cve",
    "title": "Linknat VOS Manager Path Traversal File Disclosure",
    "source": "VulnCheck",
    "references": "http://www.linknat.com/\nhttps://web.archive.org/web/20151013001957/http://www.wooyun.org/bugs/wooyun-2010-0145458\nhttps://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/scanner/http/linknat_vos_traversal.rb\nhttps://www.vulncheck.com/advisories/linknat-vos-manager-path-traversal-file-disclosure",
    "id": "CVE-2025-34118",
    "bulletinFamily": "",
    "cwe": [
        "CWE-22",
        "CWE-20"
    ],
    "cvelist": null,
    "sourceData": "Linknat Technology VOS Manager *\nLinknat Technology VOS Manager *",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "VOS Manager",
    "version": "*",
    "vendor": "Linknat Technology",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}