Cyber Resilience

CVE-2025-12055

High

Published: 27 October 2025

Published
27 October 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score 0.2232 95.9th percentile
Risk Priority 28 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-12055 is a high-severity Path Traversal (CWE-22) vulnerability in Sec Consult (inferred from references). Its CVSS base score is 7.5 (High).

Operationally, ranked in the top 4.1% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

Deeper analysis

HYDRA X, MIP 2 and FEDRA 2 from MPDV Mikrolab GmbH contain an unauthenticated path traversal vulnerability (CWE-22) in all releases prior to Maintenance Pack 36 with Service Pack 8. The flaw resides in the Filename parameter of the publicly accessible $SCHEMAS$ resource and permits arbitrary file reads from the underlying Windows file system without requiring authentication. The issue carries a CVSS 3.1 base score of 7.5 reflecting network attack vector, low complexity, and high confidentiality impact.

An attacker with network access can supply crafted values to the Filename parameter and retrieve any readable file on the host, including configuration files, source code, or sensitive system data. No credentials or user interaction are needed, making the vulnerability trivial to exploit against exposed instances.

Vendor guidance and public disclosures at https://r.sec-consult.com/mpdv and the October 2025 Full Disclosure list advise immediate upgrade to Maintenance Pack 36 with Service Pack 8 (week 36/2025) to eliminate the vulnerable parameter handling.

EPSS for the CVE rose from low values after disclosure to a peak of 0.4844 on 2025-12-18 before receding to the current 0.2232, indicating a clear post-publication increase in observed exploitation interest.

EU & UK References

Vulnerability details

HYDRA X, MIP 2 and FEDRA 2 of MPDV Mikrolab GmbH suffer from an unauthenticated local file disclosure vulnerability in all releases until Maintenance Pack 36 with Servicepack 8 (week 36/2025), which allows an attacker to read arbitrary files from…

more

the Windows operating system. The "Filename" parameter of the public $SCHEMAS$ ressource is vulnerable and can be exploited easily.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

Sec Consult
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-22

Validates pathnames and filenames to prevent traversal outside intended directories.

References