2 matches found
CVE-2022-31457
The CVE-2022-31457 entry concerns RTX TRAP v1.0, where a directory traversal is possible via crafted requests to the /data/ endpoint. The vulnerability’s CVSS v3.1 base score is 7.5 (HIGH) with NETWORK attack vector, LOW attack complexity, and no privileges required, and it mainly impacts confide...
CVE-2022-31458
CVE-2022-31458 affects RTX TRAP v1.0, with a host header poisoning vulnerability. Exploitation involves manipulating the HTTP Host header to spoof the server and cause it to process requests under a malicious hostname. Reported data from NVD cites a network attack vector with low-moderate impact ...