This page aggregates publicly disclosed CVE and security risk information related to valmet, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-15577 | An unauthenticated attacker can exploit this vulnerability by manipulating URL to achieve arbitrary file read access.This issue affects Valmet DNA Web Tools: C2022 and older. | db4dfee8-a97e-4877-bfae-eba6d14a2166 | 8.7 | 0.05% | 2026-02-12 | 2026-02-23 |
| CVE-2021-26726 | A remote code execution vulnerability affecting a Valmet DNA service listening on TCP port 1517, allows an attacker to execute commands with SYSTEM privileges This issue affects: Valmet DNA versions from Collection 2012 until Collection 2021. | [email protected] | 8.8 | 1.08% | 2022-02-16 | 2024-11-21 |