CVE-2025-35430 | CISA Thorium up to 1.1.1 download_ephemeral/download_children path traversal

September 18, 2025 Yanac

A vulnerability classified as critical was found in CISA Thorium up to 1.1.1. This affects the function download_ephemeral/download_children. The manipulation results in path traversal.

This vulnerability is cataloged as CVE-2025-35430. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More