Lucene search
MitreCVE-2022-24632HistoryMay 29, 2023 - 9:15 p.m.
CVE-2022-24632
2023-05-2921:15:09
CWE-22
mitre
web.nvd.nist.gov
30
audiocodes
device manager express
cve-2022-24632
directory traversal
file download
security issue
nvd
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
7.2
Confidence
High
EPSS
0.001
Percentile
26.7%
An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. It is directory traversal during file download via the BrowseFiles.php view parameter.
Affected configurations
Node
audiocodesdevice_manager_expressRange≤7.8.20002.47752
| Vendor | Product | Version | CPE |
|---|---|---|---|
| audiocodes | device_manager_express | * | cpe:2.3:a:audiocodes:device_manager_express:*:*:*:*:*:*:*:* |
References
Related
prion
prion
Directory traversal
2023-05-29 21:15:00
cvelist
cvelist
CVE-2022-24632
2023-05-29 00:00:00
nvd
nvd
CVE-2022-24632
2023-05-29 21:15:09
exploitdb
exploitdb
Device Manager Express 7.8.20002.47752 - Remote Code Execution (RCE)
2023-03-30 00:00:00
zdt
zdt
packetstorm
packetstorm
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
7.2
Confidence
High
EPSS
0.001
Percentile
26.7%
Related for CVE-2022-24632