Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 8:57 p.m.12 views

CVE-2022-46835

IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p2, IdentityIQ 8.2 and all 8.2 patch levels prior to 8.2p5, IdentityIQ 8.1 and all 8.1 patch levels prior to 8.1p7, IdentityIQ 8.0 and all 8.0 patch levels prior to 8.0p6 allow access to arbitrary files in the application server filesystem due t...

8.8CVSS6.7AI score0.10124EPSS
Exploits0
OSV
OSV
added 2023/01/31 3:15 p.m.5 views

CVE-2022-46835

IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p2, IdentityIQ 8.2 and all 8.2 patch levels prior to 8.2p5, IdentityIQ 8.1 and all 8.1 patch levels prior to 8.1p7, IdentityIQ 8.0 and all 8.0 patch levels prior to 8.0p6 allow access to arbitrary files in the application server filesystem due t...

7.5CVSS5.9AI score0.00935EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/01/31 12:0 a.m.12 views

CVE-2022-46835 SailPoint IdentityIQ JavaServer File Path Traversal Vulnerability

IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p2, IdentityIQ 8.2 and all 8.2 patch levels prior to 8.2p5, IdentityIQ 8.1 and all 8.1 patch levels prior to 8.1p7, IdentityIQ 8.0 and all 8.0 patch levels prior to 8.0p6 allow access to arbitrary files in the application server filesystem due t...

8.8CVSS8.6AI score0.00935EPSS
Exploits0References1
CVE
CVE
added 2023/01/31 12:0 a.m.191 views

CVE-2022-46835

IdentityIQ CVE-2022-46835 is a path traversal in JavaServer Faces (JSF) 2.2.20 that allows reading arbitrary files from the application server filesystem. Affected: IdentityIQ 8.3 (all 8.3 patch levels before 8.3p2), 8.2 (before 8.2p5), 8.1 (before 8.1p7), 8.0 (before 8.0p6). Root cause reference...

8.8CVSS7AI score0.00935EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder