CVE-2025-41754

Arbitrary Read with ubr-editfile

CVSS 6.5 MEDIUMEPSS 0.3%CWE-1242

In short

An attacker with basic network access can read any file on the system by using a hidden, undocumented feature in the web server. This is dangerous because sensitive files like passwords or configuration data could be exposed.

Technical detail

The ubr-editfile method in wwwubr.cgi lacks proper access controls and input validation, allowing unauthenticated or low-privileged remote attackers to perform arbitrary file reads. The vulnerability stems from an undocumented API endpoint that was not properly secured or removed from the codebase.

Summary generated and translated by AI from the official description.

A low-privileged remote attacker can exploit the ubr-editfile method in wwwubr.cgi, an undocumented and unused API endpoint to read arbitrary files on the system.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

MBS · UBR-01 Mk II MBS · UBR-02 MBS · UBR-LON

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.mbs-solutions.de/mbs-2025-0001