CVE-2025-27920

EUVD-2025-13464
Output Messenger before 2.0.63 was vulnerable to a directory traversal attack through improper file path handling. By using ../ sequences in parameters, attackers could access sensitive files outside the intended directory, potentially leading to configuration leakage or arbitrary file access.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
mitreCNA
7.2 HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
Affected Products (NVD)
VendorProductVersion
srimaxoutput_messenger
𝑥
< 2.0.63
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.outputmessenger.com/cve-2025-27920/
https://www.srimax.com/products-2/output-messenger/
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-27920
https://www.microsoft.com/en-us/security/blog/2025/05/12/marbled-dust-leverages-zero-day-in-output-messenger-for-regional-espionage/