THREATOPS
THREAT OPSCVEs › CVE-2025-27920

CVE-2025-27920 — Srimax Output Messenger Directory Traversal Vulnerability

CISA KEVExploited: confirmedSrimax

Srimax Output Messenger contains a directory traversal vulnerability that allows an attacker to access sensitive files outside the intended directory, potentially leading to configuration leakage or arbitrary file access.

Vulnerability details