exploitDog

CVE-2022-24632

Опубликовано: 29 мая 2023

Источник: nvd

CVSS3: 5.3

EPSS Средний

Описание

An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. It is directory traversal during file download via the BrowseFiles.php view parameter.

Ссылки

http://seclists.org/fulldisclosure/2023/Feb/12
Exploit
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2023/Feb/12
Exploit
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:audiocodes:device_manager_express:*:*:*:*:*:*:*:*

Версия до 7.8.20002.47752 (включая)

EPSS

Процентиль: 98%

0.5694

Средний

5.3 Medium

CVSS3

Дефекты

CWE-22

Связанные уязвимости

GHSA-wgw4-77r7-7jf4

CVSS3: 5.3

github

больше 2 лет назад

An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. It is directory traversal during file download via the BrowseFiles.php view parameter.

EPSS

Процентиль: 98%

0.5694

Средний

5.3 Medium

CVSS3

Дефекты

CWE-22