Primary

Context

Nozomi Networks Waterfall WF-500 Relative Path Traversal Vulnerability Allowing Arbitrary File Deletion

Vulnerability

A relative path traversal vulnerability has been identified in the Administration WebUI of Nozomi Networks Waterfall WF-500 TX and RX Hosts, specifically in version 7.9.1.0 R2502171040. This vulnerability allows remote, unauthenticated attackers to delete arbitrary files on the host machines.

Impact

Exploitation of this vulnerability could lead to unauthorized deletion of files on the affected host machines.

Added: May 29, 2026, 12:25 PM

Updated: May 29, 2026, 12:25 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

9.8

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

9.8

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Nozomi Networks Waterfall WF-500 Relative Path Traversal Vulnerability Allowing Arbitrary File Deletion

Vulnerability

Impact

Affected Products

Nozomi Networks WF-500 TX

Nozomi Networks WF-500 RX

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating