CVE-2025-25231
HIGH EXPLOITED NUCLEIOmnissa Workspace ONE UEM - Path Traversal
Title source: nucleiExploitation Summary
CVE-2025-25231 has been observed exploited in the wild (reported by VulnCheck KEV, ENISA EUVD). EIP tracks 1 public exploit from researchers including ashkan-pu. A Nuclei detection template is also available.
AI-analyzed exploit summary This repository provides a Nuclei template to detect CVE-2025-25231, a path traversal vulnerability in Omnissa Workspace ONE UEM. The template sends crafted GET requests to restricted APIs to access sensitive read-only files on the server.
Description
Omnissa Workspace ONE UEM contains a Secondary Context Path Traversal Vulnerability. A malicious actor may be able to gain access to sensitive information by sending crafted GET requests (read-only) to restricted API endpoints.
Exploits (1)
This repository provides a Nuclei template to detect CVE-2025-25231, a path traversal vulnerability in Omnissa Workspace ONE UEM. The template sends crafted GET requests to restricted APIs to access sensitive read-only files on the server.
Nuclei Templates (1)
html:"/airwatch/default.aspx"
banner="/airwatch/default.aspx" || header="/airwatch/default.aspx"
References (2)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N