Fixed Intel

CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Jun 9, 2025

High
CISA KEV

CVE-2025-27920

SrimaxOutput Messenger

Srimax Output Messenger contains a directory traversal vulnerability that allows an attacker to access sensitive files outside the intended directory, potentially leading to configuration leakage or arbitrary file access.

Required Action

https://www.outputmessenger.com/cve-2025-27920/ ; https://nvd.nist.gov/vuln/detail/CVE-2025-27920

Vulnerability Overview

Severity
High
CISA KEV
Yes
Ransomware
Unknown
Published
May 19, 2025
KEV Added
May 19, 2025
Due Date
Jun 9, 2025
Related Articles
0

Vendor

Srimax

Output Messenger