Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2022/04/03 11:15 p.m.11 views

CVE-2022-27248

A directory traversal vulnerability in IdeaRE RefTree before 2021.09.17 allows remote authenticated users to download arbitrary .dwg files from a remote server by specifying an absolute or relative path when invoking the affected DownloadDwg endpoint. An attack uses the path field to...

6.5CVSS6AI score0.02823EPSS
Exploits2References3
NVD
NVD
added 2022/04/03 11:15 p.m.36 views

CVE-2022-27248

A directory traversal vulnerability in IdeaRE RefTree before 2021.09.17 allows remote authenticated users to download arbitrary .dwg files from a remote server by specifying an absolute or relative path when invoking the affected DownloadDwg endpoint. An attack uses the path field to...

6.5CVSS0.02823EPSS
Exploits2References2
OSV
OSV
added 2022/04/03 11:15 p.m.10 views

CVE-2022-27248

A directory traversal vulnerability in IdeaRE RefTree before 2021.09.17 allows remote authenticated users to download arbitrary .dwg files from a remote server by specifying an absolute or relative path when invoking the affected DownloadDwg endpoint. An attack uses the path field to...

6.5CVSS5.9AI score0.02823EPSS
Exploits2References2
Cvelist
Cvelist
added 2022/04/03 10:14 p.m.38 views

CVE-2022-27248

A directory traversal vulnerability in IdeaRE RefTree before 2021.09.17 allows remote authenticated users to download arbitrary .dwg files from a remote server by specifying an absolute or relative path when invoking the affected DownloadDwg endpoint. An attack uses the path field to...

6.5AI score0.02823EPSS
Exploits2References2
Rows per page
Query Builder