Security Advisory

CVE-2025-10203

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-15 16:27:44

Last updated 2025-09-15 18:07:25

Assigner NI

State PUBLISHED

Description

Relative path traversal vulnerability due to improper input validation in Digilent WaveForms that may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted .DWF3WORK file. This vulnerability affects Digilent WaveForms 3.24.3 and prior versions.

← Browse all CVEs View on cve.org ↗