CVE-2025-12055
Published: 27 October 2025
Summary
CVE-2025-12055 is a high-severity Path Traversal (CWE-22) vulnerability in Sec Consult (inferred from references). Its CVSS base score is 7.5 (High).
Operationally, ranked in the top 4.1% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
Deeper analysis
HYDRA X, MIP 2 and FEDRA 2 from MPDV Mikrolab GmbH contain an unauthenticated path traversal vulnerability (CWE-22) in all releases prior to Maintenance Pack 36 with Service Pack 8. The flaw resides in the Filename parameter of the publicly accessible $SCHEMAS$ resource and permits arbitrary file reads from the underlying Windows file system without requiring authentication. The issue carries a CVSS 3.1 base score of 7.5 reflecting network attack vector, low complexity, and high confidentiality impact.
An attacker with network access can supply crafted values to the Filename parameter and retrieve any readable file on the host, including configuration files, source code, or sensitive system data. No credentials or user interaction are needed, making the vulnerability trivial to exploit against exposed instances.
Vendor guidance and public disclosures at https://r.sec-consult.com/mpdv and the October 2025 Full Disclosure list advise immediate upgrade to Maintenance Pack 36 with Service Pack 8 (week 36/2025) to eliminate the vulnerable parameter handling.
EPSS for the CVE rose from low values after disclosure to a peak of 0.4844 on 2025-12-18 before receding to the current 0.2232, indicating a clear post-publication increase in observed exploitation interest.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-36096
Vulnerability details
HYDRA X, MIP 2 and FEDRA 2 of MPDV Mikrolab GmbH suffer from an unauthenticated local file disclosure vulnerability in all releases until Maintenance Pack 36 with Servicepack 8 (week 36/2025), which allows an attacker to read arbitrary files from…
more
the Windows operating system. The "Filename" parameter of the public $SCHEMAS$ ressource is vulnerable and can be exploited easily.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Validates pathnames and filenames to prevent traversal outside intended directories.