Path Traversal in Jmri
CVE-2025-14311
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in JMRI.This issue affects JMRI: before 5.13.3.
Vulnerability class: Path Traversal (Directory Traversal)
EPSS: 0.002 (7.9th percentile) — read the EPSS interpretation.
Affected products
- Jmri — versions 0
Weakness classification (CWE)
References
- cve_disclosure@tech.gov.sg (patch)