{"id":"CVE-2025-12382","details":"Improper Limitation of a Pathname 'Path Traversal') vulnerability in Algosec Firewall Analyzer on Linux, 64 bit allows an authenticated user to upload files to a restricted directory leading to code injection. This issue affects Algosec Firewall Analyzer: A33.0 (up to build 320), A33.10 (up to build 210).","modified":"2026-03-12T17:35:46.150361Z","published":"2025-11-12T10:15:43.100Z","references":[{"type":"ADVISORY","url":"https://techdocs.algosec.com/en/cves/Content/tech-notes/cves/cve-2025-12382.htm"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-12382.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"a33.0-NA"}]},{"events":[{"introduced":"0"},{"last_affected":"a33.0-build320"}]},{"events":[{"introduced":"0"},{"last_affected":"a33.10-NA"}]},{"events":[{"introduced":"0"},{"last_affected":"a33.10-build210"}]}]}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}