Path Traversal in Jmri

CVE-2025-14311

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in JMRI.This issue affects JMRI: before 5.13.3.

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.002 (7.9th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References