CVE-2025-48496 | Emerson ValveLink SOLO up to 13.x uncontrolled search path (icsa-25-189-01)

Inserito da Angelo Barbosa | Lug 9, 2025 | CVE

A vulnerability was found in Emerson ValveLink SOLO, ValveLink DTM, ValveLink PRM and ValveLink SNAP-ON up to 13.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to uncontrolled search path.

This vulnerability is known as CVE-2025-48496. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-48496 | Emerson ValveLink SOLO up to 13.x uncontrolled search path (icsa-25-189-01)

Post correlati

CVE-2024-32981 | SilverStripe Framework up to 5.2.15 cross site scripting

CVE-2024-20755 | Adobe Bridge heap-based overflow (APSB24-15)

CVE-2024-40585 | Fortinet FortiAnalyzer log file (FG-IR-24-311)

Zoom Rooms Client/VDI Client untrusted search path