The Reporting module in Aseco Lietuva document management system DVS Avilys before 3.5.58 allows unauthorized file download. An unauthenticated attacker can impersonate an administrator by reading administrative files.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2022-03-23T21:22:38

Updated: 2024-08-03T05:25:31.109Z

Reserved: 2022-03-15T00:00:00

Link: CVE-2022-27192

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-03-23T22:15:13.373

Modified: 2024-11-21T06:55:22.807

Link: CVE-2022-27192

cve-icon Redhat

No data.