Design/Logic Flaw

2022-04-2815:15:00

PRIOn knowledge base

www.prio-n.com

9.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

57.1%

JSON

Elcomplus SmartPTT is vulnerable as the backup and restore system does not adequately validate upload requests, enabling a malicious user to potentially upload arbitrary files.

CPENameOperatorVersion
smartptt_scadaeq1.1

CPE	Name	Operator	Version
	smartptt_scada	eq	1.1

References

www.cisa.gov/uscert/ics/advisories/icsa-22-109-04