3 matches found
CVE-2022-46899
An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is Arbitrary File Upload. The BaseController class, that each of the service controllers derives from, allows for the upload of arbitrary files. If the HTTP request is a multipart/form-data POST request, any...
CVE-2022-46899
creationtimestamp| type| source ---|---|--- 2023-07-26 00:27:17+00:00| seen| https://t.me/cibsecurity/67262...
CVE-2022-46899
CVE-2022-46899 affects Vocera Report Server and Voice Server 5.x up to 5.8. The issue is Arbitrary File Upload: the BaseController used by service controllers accepts multipart/form-data POST requests and will write any parameter with a filename entry to the Vocera upload-staging directory using ...