Vulnerabilities

CVE-2025-27028

by Fred · 09/07/2025

The Linux deprivileged user vpuser in Radiflow iSAP Smart Collector (CentOS 7 – VSAP 1.20) can read the entire file system content, including files belonging to other users and having restricted access (like, for example, the root password hash).

Assigner : cert@enisa.org

More information : https://www.cvcn.gov.it/cvcn/cve/CVE-2025-27028

Similar

Tags: Cybersecurity Alert