How severe is CVE-2022-24241?

CVE-2022-24241 has a CVSS v3 score of 7.5 (HIGH).

CVE-2022-24241

Name: aceweb_online_portal
Author: aceware

7.5HIGH

ACEweb Online Portal 3.5.065 was discovered to contain an External Controlled File Path and Name vulnerability via the txtFilePath parameter in attachments.awp.

发布于: 6/2/2022更新于: 11/21/2024

描述

ACEweb Online Portal 3.5.065 was discovered to contain an External Controlled File Path and Name vulnerability via the txtFilePath parameter in attachments.awp.

AI分析AI驱动

受影响产品

acewareaceweb_online_portal

参考资料

http://aceware.com
Product
http://aceweb.com
Product
https://www.aceware.com/forum/viewtopic.php?f=7&t=481
Release NotesVendor Advisory
http://aceware.com
Product
http://aceweb.com
Product
https://www.aceware.com/forum/viewtopic.php?f=7&t=481
Release NotesVendor Advisory