Valmet CVE debriefs

CVE-2025-15577

CVE-2025-15577 is a high-severity file-read vulnerability in Valmet DNA Engineering Web Tools. CISA’s advisory says an unauthenticated attacker can manipulate a URL to read arbitrary files, creating a material confidentiality risk for affected deployments. Valmet states a fix is available, so organizations should treat this as a prompt remediation item for any exposed or in-use installations.