CVE-2025-59171 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-59171 PUBLISHED CVSS 7.5 HIGH

Due to insufficient sanitization, an attacker can upload a specially crafted configuration file to traverse directories and achieve remote code execution with system-level permissions.

EPSS 0.12% · 31.3th percentile

Risk Scores

CVSS v3.1

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS Score

0.12%

31.3th percentile

Affected Products

Vendor	Product	Versions
Advantech	DeviceOn/iEdge	0
advantech	deviceon\/iedge	0

Timeline

Jul 21, 2025 PoC Published
Nov 6, 2025 PoC Published
Nov 6, 2025 CVE Published
Nov 7, 2025 EPSS Score
Nov 7, 2025 PoC Published
Nov 7, 2025 PoC Published
Nov 9, 2025 CVE Updated
Nov 12, 2025 EPSS Score
Nov 17, 2025 EPSS Score
Nov 21, 2025 EPSS Score
Nov 26, 2025 EPSS Score
Dec 1, 2025 EPSS Score

References

Open in Interactive Console →