CVE-2025-1035

MEDIUM 5.7

Path Traversal in Komtera Technolgies' KLog Server

CVSS Score

5.7

EPSS Score

66.9%

EPSS Percentile

99th

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Komtera Technolgies KLog Server allows Manipulating Web Input to File System Calls. This issue affects KLog Server: before 3.1.1.

CWE	CWE-22
Vendor	komtera technolgies
Product	klog server
Published	Feb 18, 2025
Last Updated	Jun 6, 2026

Stay Ahead of the Next One

Get instant alerts for komtera technolgies klog server

Be the first to know when new medium vulnerabilities affecting komtera technolgies klog server are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Affected Versions

Komtera Technolgies / KLog Server

0 < 3.1.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

usom.gov.tr: https://www.usom.gov.tr/bildirim/tr-25-0037 klogserver.com: https://www.klogserver.com/surum-notlari/3-1-1/ siberguvenlik.gov.tr: https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0037

Credits

Furkan KARAARSLAN