CVE-2025-11540
HIGHDescription
Path Traversal vulnerability in Sharp Display Solutions projectors allows a attacker may access and read any files within the projector.
Is your site exposed to CVE-2025-11540?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| sharp | np-p502h_firmware |
| sharp | np-p502h |
| sharp | np-p502w_firmware |
| sharp | np-p502w |
| sharp | np-p452h_firmware |
| sharp | np-p452h |
| sharp | np-p452w_firmware |
| sharp | np-p452w |
| sharp | np-p502hg_firmware |
| sharp | np-p502hg |
| sharp | np-p502wg_firmware |
| sharp | np-p502wg |
| sharp | np-p452hg_firmware |
| sharp | np-p452hg |
| sharp | np-p452wg_firmware |
| sharp | np-p452wg |
| sharp | np-p502h\+_firmware |
| sharp | np-p502h\+ |
| sharp | np-p502w\+_firmware |
| sharp | np-p502w\+ |
| sharp | np-cr5450h_firmware |
| sharp | np-cr5450h |
| sharp | np-cr5450w_firmware |
| sharp | np-cr5450w |
| sharp | np-p502hl_firmware |
| sharp | np-p502hl |
| sharp | np-p502wl_firmware |
| sharp | np-p502wl |
| sharp | np-p502hlg_firmware |
| sharp | np-p502hlg |
| sharp | np-p502wlg_firmware |
| sharp | np-p502wlg |
| sharp | np-p502hl\+_firmware |
| sharp | np-p502hl\+ |
| sharp | np-p502wl\+_firmware |
| sharp | np-p502wl\+ |
| sharp | np-cr5450hl_firmware |
| sharp | np-cr5450hl |
| sharp | np-cr5450wl_firmware |
| sharp | np-cr5450wl |
| sharp | np-p502hl-2_firmware |
| sharp | np-p502hl-2 |
| sharp | np-p502wl-2_firmware |
| sharp | np-p502wl-2 |
| sharp | np-p502hlg-2_firmware |
| sharp | np-p502hlg-2 |
| sharp | np-p502wlg_firmware |
| sharp | np-p502wlg |
| sharp | np-um352w_firmware |
| sharp | np-um352w |
| sharp | np-um352wg_firmware |
| sharp | np-um352wg |
| sharp | np-um352w\+_firmware |
| sharp | np-um352w\+ |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2025-11540? +
How severe is CVE-2025-11540? +
What products are affected by CVE-2025-11540? +
How do I check if I'm vulnerable to CVE-2025-11540? +
Related Vulnerabilities
Karmada is a Kubernetes management system that allows users to run cloud-native applications across multiple Kubernetes clusters and clouds. Prior …
Path traversal vulnerability in Gleam's dependency management allows arbitrary directory deletion via malicious build/packages/packages.toml content. Package keys read from build/packages/packages.toml …
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.1, a path traversal …
Poetry is a dependency manager for Python. Prior to 2.3.4, the extractall() function in src/poetry/utils/helpers.py:410-426 extracts sdist tarballs without path …
Kenik Camera management Panel is vulnerable to Path Traversal vulnerability. An unauthenticated attacker can send GET request with arbitrary file …
Two path traversal vulnerabilities in the Network Installation Service (NIS) of Altium Enterprise Server allow an unauthenticated network attacker to …