CVE-2025-27850

EUVD-2025-209828
The locally served web site on the Garmin WDU (v1 1.4.6 and v2 5.0) allows a symlink attack. If a malicious graphics package containing symlinks is uploaded, the web server follows the supplied links when serving content. No mechanisms to restrict those link targets to a specific area of the filesystem is enabled. This allows an attacker to retrieve arbitrary files from the device.
Link Following
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 30%
Affected Products (NVD)
VendorProductVersion
garminempirbus_wireless_display_unit_firmware
1.4.6
garminempirbus_wireless_display_unit_firmware
5.00
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://garmin.com
https://www8.garmin.com/support/ch.jsp?product=010-02642-00