Lucene search

K
prionPRIOn knowledge basePRION:CVE-2022-42706
HistoryDec 05, 2022 - 9:15 p.m.

Directory traversal

2022-12-0521:15:00
PRIOn knowledge base
www.prio-n.com
9
sangoma
asterisk
directory traversal
security
vulnerability
nvd

5.1 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

51.5%

An issue was discovered in Sangoma Asterisk through 16.28, 17 and 18 through 18.14, 19 through 19.6, and certified through 18.9-cert1. GetConfig, via Asterisk Manager Interface, allows a connected application to access files outside of the asterisk configuration directory, aka Directory Traversal.

5.1 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

51.5%