Lucene search
TwcertCVE-2022-39058HistoryOct 18, 2022 - 6:15 a.m.
CVE-2022-39058
2022-10-1806:15:09
CWE-22
twcert
web.nvd.nist.gov
31
2
cve-2022-39058
rava
certification
validation
path traversal
vulnerability
nvd
security
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.8
Confidence
High
EPSS
0.003
Percentile
65.2%
RAVA certification validation system has a path traversal vulnerability. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and access arbitrary system files.
Affected configurations
Node
changingtecrava_certificate_validation_systemMatch3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| changingtec | rava_certificate_validation_system | 3 | cpe:2.3:a:changingtec:rava_certificate_validation_system:3:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Changing Information Technology Inc.",
"product": "RAVA certificate validation system",
"versions": [
{
"version": "3",
"status": "affected"
}
]
}
]Social References
More
Related
cvelist
cvelist
prion
prion
Path traversal
2022-10-18 06:15:00
nvd
nvd
CVE-2022-39058
2022-10-18 06:15:09
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.8
Confidence
High
EPSS
0.003
Percentile
65.2%
Related for CVE-2022-39058