CVE-2025-12055P1HIGHCVSS 7.5ExploitedPoCv<Maintenance Pack 36 with Servicepack 8, release week 36/20252025-10-27
CVE-2025-12055 [HIGH] CWE-22 CVE-2025-12055: HYDRA X, MIP 2 and FEDRA 2 of MPDV Mikrolab GmbH suffer from an unauthenticated local file disclosur
HYDRA X, MIP 2 and FEDRA 2 of MPDV Mikrolab GmbH suffer from an unauthenticated local file disclosure vulnerability in all releases until Maintenance Pack 36 with Servicepack 8 (week 36/2025), which allows an attacker to read arbitrary files from the Windows operating system. The "Filename" parameter of the public $SCHEMAS$ ressource is vulnerable and
nvd