AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2022-12-23T20:50:24.757Z
Updated: 2024-08-03T03:51:46.138Z
Reserved: 2022-01-24T01:31:26.578Z
Link: CVE-2022-23854
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-12-23T21:15:09.097
Modified: 2024-01-19T19:15:07.887
Link: CVE-2022-23854
Redhat
No data.