Products
Government
Resources
Community
Company
Partners
Sign In / Join
Sign In
Advisories
Riverbed SteelHead VCX Authenticated Arbitrary File Read via Log Filter Injection
Go Back
severity
high
date
July 10, 2025
Affecting
VCX255U 9.6.0a
Potentially other VCX appliances
CVE
CVE-2025-34098
CVE type
Path Traversal
CVSS
7.1
CVSS V4 Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N
References
Metasploit Module
EDB-42101
Credit
Gregory Draperi