Path Traversal in Albrecht Jung Gmbh & Co. Kg Smart Panel 5.1 Knx
CVE-2026-25872
JUNG Smart Panel KNX firmware version L1.12.22 and prior contain an unauthenticated path traversal vulnerability in the embedded web interface. The application fails to properly validate file path input, allowing remote, unauthenticated at…
Vulnerability class: Path Traversal (Directory Traversal)
EPSS: 0.007 (48.6th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N.
Affected products
- Albrecht Jung Gmbh & Co. Kg Smart Panel 5.1 Knx — versions 0
Weakness classification (CWE)
References
- disclosure@vulncheck.com (technical-description, exploit)
- disclosure@vulncheck.com (product)
- disclosure@vulncheck.com (product)
- disclosure@vulncheck.com (third-party-advisory)
Frequently asked questions
- What is CVE-2026-25872?
- CVE-2026-25872 is a medium-severity vulnerability in Albrecht Jung Gmbh & Co. Kg Smart Panel 5.1 Knx, classified under Path Traversal. CVSS score: 5.3/10. Published 2026-02-10.
- How severe is CVE-2026-25872?
- Medium severity. CVSS v3 base score is 5.3 out of 10.