Path Traversal in Microsens Nmp Web+

CVE-2025-49153

The affected products could allow an unauthenticated attacker to overwrite files and execute arbitrary code.

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.034 (87.6th percentile) — read the EPSS interpretation.

Affected products

Microsens Nmp Web+ — versions 0

Weakness classification (CWE)

CWE-22 — Path Traversal

References

www.cisa.gov/news-events/ics-advisories/icsa-25-175-07