CVE-2022-42733
CVE-2022-42733 affects Siemens syngo Dynamics: all versions prior to VA40G HF01 are vulnerable. The syngo Dynamics application server hosts a web service with an operation that has improper read access control, allowing files to be retrieved from any folder accessible to the account used by the w...