CVE Catalog

CVE-2025-69116

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.44%

35th percentile — higher than 35% of all known CVEs

Summary

Iona versions up to 1.0.8 are vulnerable to unauthenticated local file inclusion.

Risk Assessment

An attacker could gain access to sensitive files on the server, potentially leading to data exposure or further attacks.

Recommendation

It is recommended to upgrade to the latest version of Iona to mitigate this vulnerability.

Original NVD description (English source)

Unauthenticated Local File Inclusion in Iona <= 1.0.8 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS