2 matches found
CVE-2022-1661
The CVE-2022-1661 vulnerability affects Keysight N6854A Geolocation Server and N6841A RF Sensor software. It is a directory traversal flaw in the UserFirmwareRequestHandler class that can allow an attacker to read arbitrary OS files via crafted HTTP requests. Affected versions are 2.3.0 and earli...
Keysight N6854A Geolocation server and N6841A RF Sensor software
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Keysight Technologies, Inc. Equipment: N6854A Geolocation server and N6841A RF Sensor software Vulnerabilities: Relative Path Traversal, Deserialization of Untrusted Data 2. RISK EVALUATION Successful...