CVE-2022-39034 – Smart eVision has a path traversal vulnerability in the Report API function due to insuffi …

28 September 2022

Vuln ID: CVE-2022-39034

Published: 2022-09-28 04:15:14Z

Description: Smart eVision has a path traversal vulnerability in the Report API function due to insufficient filtering for special characters in URLs. A remote attacker with general user privilege can exploit this vulnerability to bypass authentication, access restricted paths and download system files.

Source: NVD.NIST.GOV

Date:

28 September 2022

Categorie(s):

NVD

Tag(s):

NVD

Fifth of CISOs Admit Staff Leaked Data Via GenAI24 April 2024
Prophet Security emerges from stealth and raises $11 million24 April 2024
What’s new in security for Ubuntu 24.04 LTS?24 April 2024
Ransomware Victims Who Opt To Pay Ransom Hits Record Low24 April 2024
IBM Nearing Talks to Acquire Cloud-software Provider HashiCorp24 April 2024