CVE-2025-44163

Published: Jun 27, 2025Modified: Nov 10, 2025

6.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Exploitability: 2.8 / Impact: 3.4

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

RaspAP raspap-webgui 3.3.1 is vulnerable to Directory Traversal in ajax/networking/get_wgkey.php. An authenticated attacker can send a crafted POST request with a path traversal payload in the `entity` parameter to overwrite arbitrary files writable by the web server via abuse of the `tee` command used in shell execution.

Affected (1)

Products: Raspap: Raspap Webgui

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Raspap Raspap Webgui	Version 3.3.1

Related CWEs

Relative Path Traversal

The product uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such as ".." that can resolve to a location that is outside of that directory.

References (2)

https://gist.github.com/YichaoXu/3694f039a3d1b973efd068e4dc662a41

Source: cve@mitre.org

ExploitMitigationThird Party Advisory

https://github.com/RaspAP/raspap-webgui/blob/125ae7a39ad7c9a71250d3b3e349fd767687ff8d/ajax/networking/get_wgkey.php#L9

Source: cve@mitre.org

Product

Timeline

No history available yet.