Lucene search
K

6 matches found

OSV
OSV
added 2022/06/27 5:15 p.m.6 views

CVE-2022-2106

Elcomplus SmartICS v2.3.4.0 does not validate the filenames sufficiently, which enables authenticated administrator-level users to perform path traversal attacks and specify arbitrary files...

2.7CVSS5.9AI score0.00587EPSS
Exploits0References1
NVD
NVD
added 2022/06/27 5:15 p.m.25 views

CVE-2022-2106

Elcomplus SmartICS v2.3.4.0 does not validate the filenames sufficiently, which enables authenticated administrator-level users to perform path traversal attacks and specify arbitrary files...

4CVSS0.00587EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/06/27 4:15 p.m.9 views

CVE-2022-2106 Elcomplus SmartICS Path Traversal

Elcomplus SmartICS v2.3.4.0 does not validate the filenames sufficiently, which enables authenticated administrator-level users to perform path traversal attacks and specify arbitrary files...

3.8CVSS6.8AI score0.00587EPSS
Exploits0References1
CVE
CVE
added 2022/06/27 4:15 p.m.66 views

CVE-2022-2106

Elcomplus SmartICS Web HMI v2.3.4.0 exposes a relative path traversal due to insufficient filename validation. An authenticated administrator can specify arbitrary files, enabling potential exposure of sensitive data. Mitigation: upgrade to SmartICS 2.4 (patch released) and apply network/access c...

4CVSS4.3AI score0.00587EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/06/27 4:15 p.m.36 views

CVE-2022-2106 Elcomplus SmartICS Path Traversal

Elcomplus SmartICS v2.3.4.0 does not validate the filenames sufficiently, which enables authenticated administrator-level users to perform path traversal attacks and specify arbitrary files...

3.8CVSS4.7AI score0.00587EPSS
Exploits0References1
ICS
ICS
added 2022/06/23 12:0 a.m.81 views

Elcomplus SmartICS

1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Elcomplus LLC Equipment: SmartICS Vulnerabilities: Improper Access Control, Relative Path Traversal, Cross-site Scripting 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow...

9CVSS6.3AI score0.00765EPSS
Exploits0References4
Rows per page
Query Builder