CVE-2025-44163 — MEDIUM (6.3)

Vulnerability Description

RaspAP raspap-webgui 3.3.1 is vulnerable to Directory Traversal in ajax/networking/get_wgkey.php. An authenticated attacker can send a crafted POST request with a path traversal payload in the `entity` parameter to overwrite arbitrary files writable by the web server via abuse of the `tee` command used in shell execution.

CVSS Score

6.3

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

LOW

Affected Products

Vendor	Product	Versions
Raspap	Raspap-Webgui	3.3.1

Related Weaknesses (CWE)

CWE-23

References

https://gist.github.com/YichaoXu/3694f039a3d1b973efd068e4dc662a41ExploitMitigationThird Party Advisory
https://github.com/RaspAP/raspap-webgui/blob/125ae7a39ad7c9a71250d3b3e349fd76768Product

FAQ

What is CVE-2025-44163?

CVE-2025-44163 is a vulnerability with a CVSS score of 6.3 (MEDIUM). RaspAP raspap-webgui 3.3.1 is vulnerable to Directory Traversal in ajax/networking/get_wgkey.php. An authenticated attacker can send a crafted POST request with a path traversal payload in the `entity...

How severe is CVE-2025-44163?

CVE-2025-44163 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-44163?

Check the references section above for vendor advisories and patch information. Affected products include: Raspap Raspap-Webgui.