4 matches found
CVE-2022-2893
RONDS EPM version 1.19.5 does not properly validate the filename parameter, which could allow an unauthorized user to specify file paths and download files...
CVE-2022-2893
RONDS EPM v1.19.5 contains a path traversal vulnerability where the filename parameter is not properly validated, allowing an unauthorized user to specify file paths and download files. The issue is explicitly CVE-2022-2893; CISA ICS advisories also describe an adjacent exposure vulnerability (CV...
CVE-2022-2893
RONDS EPM version 1.19.5 does not properly validate the filename parameter, which could allow an unauthorized user to specify file paths and download files...
CVE-2022-2893
RONDS EPM version 1.19.5 does not properly validate the filename parameter, which could allow an unauthorized user to specify file paths and download files...