CVE-2025-53908

Summary

RomM is a self-hosted rom manager and player. Versions prior to 3.10.3 and 4.0.0-beta.3 have an authenticated path traversal vulnerability in the /api/raw endpoint. Anyone running the latest version of RomM and has multiple users, even unprivileged users, such as the kiosk user in the official implementation, may be affected. This allows the leakage of passwords and users that may be stored on the system. Versions 3.10.3 and 4.0.0-beta.3 contain a patch.

Affected Software

VendorProductVersion RangeStatus
rommappromm< 3.10.3affected
rommappromm< 4.0.0-beta.3affected

Weaknesses

  • CWE-26: CWE-26: Path Traversal: '/dir/../filename'

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: partial

Additional References

References