CVE-2025-9801 – This CVE describes a path traversal vulnerabili... (How to Fix)

Q: What is the severity of CVE-2025-9801?

CVE-2025-9801 has a CVSS score of 5.4 (MEDIUM). This CVE describes a path traversal vulnerability in SimStudioAI sim software where manipulation of the filePath argument allows attackers to access files outside the intended directory. Remote exploitation is possible, potentially affecting all systems running vulnerable versions of SimStudioAI sim. The vulnerability has been publicly disclosed and may be actively exploited.

📋 TL;DR

This CVE describes a path traversal vulnerability in SimStudioAI sim software where manipulation of the filePath argument allows attackers to access files outside the intended directory. Remote exploitation is possible, potentially affecting all systems running vulnerable versions of SimStudioAI sim. The vulnerability has been publicly disclosed and may be actively exploited.

💻 Affected Systems

Products:

SimStudioAI sim

Versions: All versions up to commit ed9b9ad83f1a7c61f4392787fb51837d34eeb0af

Operating Systems: All platforms running SimStudioAI sim

Default Config Vulnerable: ⚠️ Yes

Notes: This product follows a rolling release approach, so specific version numbers are not provided. The vulnerability affects an unknown part of the software that handles filePath arguments.

📦 What is this software?

Sim by Sim

View all CVEs affecting Sim →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote attackers could read sensitive system files, potentially including configuration files, credentials, or other sensitive data, leading to information disclosure and potential further system compromise.

🟠

Likely Case

Attackers accessing application configuration files, source code, or other files within the application's directory structure, potentially enabling further attacks.

🟢

If Mitigated

With proper input validation and file access controls, impact is limited to attempted attacks being blocked with appropriate logging.

🌐 Internet-Facing: HIGH - Remote exploitation is possible according to the description, making internet-facing instances particularly vulnerable.

🏢 Internal Only: MEDIUM - Internal systems could still be exploited by authenticated users or through other attack vectors.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

The exploit has been publicly disclosed according to the CVE description, though specific details about authentication requirements are not provided. Path traversal vulnerabilities typically require some level of access to the vulnerable interface.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Commit 45372aece5e05e04b417442417416a52e90ba174 and later

Vendor Advisory: https://github.com/simstudioai/sim/commit/45372aece5e05e04b417442417416a52e90ba174

Restart Required: No

Instructions:

1. Update to commit 45372aece5e05e04b417442417416a52e90ba174 or later. 2. If using package management, update to the latest available version. 3. Verify the fix by checking the commit hash or version.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement server-side validation to reject filePath arguments containing directory traversal sequences (../, ..\, etc.)

Implement input validation in application code to sanitize filePath parameters

File Access Restrictions

all

Configure the application to run with minimal file system permissions and restrict access to sensitive directories

chmod 750 /path/to/application/directory
set appropriate file system ACLs

🧯 If You Can't Patch

Implement web application firewall (WAF) rules to block path traversal patterns in requests
Isolate the application in a container or VM with restricted file system access

🔍 How to Verify

Check if Vulnerable:

Check if your SimStudioAI sim version is earlier than commit 45372aece5e05e04b417442417416a52e90ba174

Check Version:

git log --oneline -1 (if installed from source) or check application version output

Verify Fix Applied:

Verify the current commit hash matches or is later than 45372aece5e05e04b417442417416a52e90ba174

📡 Detection & Monitoring

Log Indicators:

Failed file access attempts with path traversal patterns
Unusual file access patterns outside expected directories
HTTP requests containing ../ or ..\ sequences

Network Indicators:

HTTP requests with suspicious filePath parameters containing traversal sequences

SIEM Query:

source="application_logs" AND ("../" OR "..\\" OR "%2e%2e%2f" OR "%2e%2e%5c")

📊 Metadata

CVE ID: CVE-2025-9801

CVSS v3 Score: 5.4 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

CWE: CWE-22

EPSS Score: 0.07% exploit probability (21.8th percentile)

Published: September 1, 2025

Last Updated: November 14, 2025

🔗 References

https://github.com/simstudioai/sim/commit/45372aece5e05e04b417442417416a52e90ba174 Patch
https://github.com/simstudioai/sim/issues/959 Exploit,Issue Tracking,Vendor Advisory
https://github.com/simstudioai/sim/issues/959#issue-3320697951 Exploit,Issue Tracking,Vendor Advisory
https://github.com/simstudioai/sim/issues/959#issuecomment-3221311557 Issue Tracking,Patch
https://vuldb.com/?ctiid.322116 Permissions Required,VDB Entry
https://vuldb.com/?id.322116 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.641130 Third Party Advisory,VDB Entry

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-9801, you might also want to check these: