CVE-2025-11540

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-11540
Path Traversal vulnerability in Sharp Display Solutions projectors allows a attacker may access and read any files within the projector.

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://sharp-displays.jp.sharp/global/support/info/PJ-CVE-2025-11540.html Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:sharp:np-p502h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502h:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:sharp:np-p502w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502w:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:sharp:np-p452h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p452h:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:sharp:np-p452w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p452w:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:sharp:np-p502hg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502hg:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:sharp:np-p502wg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502wg:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:sharp:np-p452hg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p452hg:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:sharp:np-p452wg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p452wg:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:sharp:np-p502h\+_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502h\+:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:sharp:np-p502w\+_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502w\+:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:sharp:np-cr5450h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-cr5450h:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:sharp:np-cr5450w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-cr5450w:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:sharp:np-p502hl_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502hl:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:sharp:np-p502wl_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502wl:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:sharp:np-p502hlg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502hlg:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:sharp:np-p502wlg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502wlg:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:sharp:np-p502hl\+_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502hl\+:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:sharp:np-p502wl\+_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502wl\+:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:sharp:np-cr5450hl_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-cr5450hl:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:sharp:np-cr5450wl_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-cr5450wl:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:sharp:np-p502hl-2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502hl-2:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:sharp:np-p502wl-2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502wl-2:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:sharp:np-p502hlg-2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502hlg-2:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:sharp:np-p502wlg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502wlg:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:sharp:np-um352w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-um352w:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND
cpe:2.3:o:sharp:np-um352wg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-um352wg:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND
cpe:2.3:o:sharp:np-um352w\+_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-um352w\+:-:*:*:*:*:*:*:*
History

15 Jan 2026, 20:27

Type Values Removed Values Added
First Time Sharp np-p502wl\+
Sharp np-p502w
Sharp np-p452w
Sharp np-p502hlg Firmware
Sharp np-p502h\+
Sharp np-p502hg Firmware
Sharp np-cr5450w Firmware
Sharp np-p452wg Firmware
Sharp np-cr5450h
Sharp np-p502w\+
Sharp np-p502wl Firmware
Sharp np-p502w\+ Firmware
Sharp np-p452hg Firmware
Sharp np-um352w\+ Firmware
Sharp np-um352w Firmware
Sharp np-p502hl Firmware
Sharp np-cr5450w
Sharp np-p502hl-2
Sharp np-p502h Firmware
Sharp np-p452h Firmware
Sharp np-cr5450wl
Sharp np-p502h
Sharp np-p452wg
Sharp np-p502wl
Sharp np-cr5450hl Firmware
Sharp np-p502hl\+
Sharp np-p452hg
Sharp np-p502hl-2 Firmware
Sharp np-p502wlg Firmware
Sharp np-p502w Firmware
Sharp np-p502hl\+ Firmware
Sharp np-p452h
Sharp np-p502hlg-2
Sharp np-p452w Firmware
Sharp np-um352wg Firmware
Sharp np-cr5450h Firmware
Sharp np-p502hlg
Sharp np-um352w
Sharp
Sharp np-p502wg Firmware
Sharp np-p502wl-2 Firmware
Sharp np-p502wg
Sharp np-p502hlg-2 Firmware
Sharp np-p502wlg
Sharp np-p502hg
Sharp np-um352w\+
Sharp np-p502hl
Sharp np-cr5450hl
Sharp np-p502wl-2
Sharp np-cr5450wl Firmware
Sharp np-p502h\+ Firmware
Sharp np-p502wl\+ Firmware
Sharp np-um352wg
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.5
References () https://sharp-displays.jp.sharp/global/support/info/PJ-CVE-2025-11540.html - () https://sharp-displays.jp.sharp/global/support/info/PJ-CVE-2025-11540.html - Vendor Advisory
CPE cpe:2.3:h:sharp:np-cr5450h:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502hlg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502hl-2:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-cr5450wl_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502h\+_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502h:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502hg:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-cr5450w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-cr5450hl:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502hl:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502hlg-2:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502wlg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502wl-2:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502hlg-2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-um352wg:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502w\+_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502hl_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p452h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502hl\+_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-cr5450w:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502hg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p452h:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502hl\+:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502wlg:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502hl-2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-um352w\+_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502wl_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502wl:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p452wg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502w\+:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502wl-2_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-um352w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-cr5450hl_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-um352w\+:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-cr5450h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502wl\+:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-um352wg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p452w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502wg:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-cr5450wl:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p452hg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502w_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p452hg:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p452w:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502w:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502h\+:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p452wg:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502wl\+_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-um352w:-:*:*:*:*:*:*:*
cpe:2.3:o:sharp:np-p502wg_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sharp:np-p502hlg:-:*:*:*:*:*:*:*

22 Dec 2025, 05:16

Type Values Removed Values Added
New CVE
Information

Published : 2025-12-22 05:16

Updated : 2026-01-15 20:27

NVD link : CVE-2025-11540

Mitre link : CVE-2025-11540

CVE.ORG link : CVE-2025-11540

JSON object : View

Products Affected

sharp

  • np-p502hl
  • np-um352w\+
  • np-cr5450hl
  • np-p452hg_firmware
  • np-p502hl-2_firmware
  • np-p502hlg_firmware
  • np-p502h\+_firmware
  • np-p502wl-2
  • np-p502w
  • np-p452wg_firmware
  • np-p502w\+
  • np-cr5450wl
  • np-cr5450h
  • np-p452hg
  • np-cr5450hl_firmware
  • np-p502hlg-2_firmware
  • np-p502wl
  • np-p502hl_firmware
  • np-cr5450wl_firmware
  • np-p502wg
  • np-p502wl\+_firmware
  • np-p502h_firmware
  • np-p452h
  • np-p502h\+
  • np-cr5450w_firmware
  • np-p502wl-2_firmware
  • np-p502w\+_firmware
  • np-p502hl-2
  • np-p502hlg
  • np-um352w\+_firmware
  • np-p502wlg_firmware
  • np-p452w_firmware
  • np-um352w
  • np-p502wg_firmware
  • np-p502wl\+
  • np-um352wg_firmware
  • np-um352w_firmware
  • np-um352wg
  • np-p452h_firmware
  • np-p502hl\+
  • np-p502hg_firmware
  • np-p502wl_firmware
  • np-p502hlg-2
  • np-p502wlg
  • np-p502h
  • np-p502hl\+_firmware
  • np-p452wg
  • np-p502w_firmware
  • np-p452w
  • np-cr5450h_firmware
  • np-cr5450w
  • np-p502hg
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')