Path Traversal Vulnerability in Wangshen SecGate 3600 and 2400
CVE-2025-4078

5.3MEDIUM

Key Information:

Vendor
Wangshen
Status
Secgate 3600
Vendor
CVE Published:
29 April 2025

Badges

👾 Exploit Exists🟡 Public PoC

Summary

A security weakness has been identified in the Wangshen SecGate 3600 and 2400 products, specifically related to the processing of the '?g=log_export_file' parameter. This vulnerability allows attackers to manipulate the 'file_name' argument, potentially leading to unauthorized access to files outside the intended directories through path traversal. The exploit can be executed remotely, raising significant concerns for users of these devices. As public details have been disclosed, it is critical for organizations utilizing affected versions to implement necessary protections and updates.

Affected Version(s)

SecGate 3600 2400

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2025-4078 - Proof of Concept

References

https://vuldb.com/?id.306515
vdb-entrytechnical-description
https://vuldb.com/?ctiid.306515
signaturepermissions-required
https://vuldb.com/?submit.560540
third-party-advisory

CVSS V4

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

0menc (VulDB User)
.