Path Traversal Vulnerability in AVEVA InTouch Access Anywhere

Path Traversal Vulnerability in AVEVA InTouch Access Anywhere

CVE-2022-23854 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server.

Learn more about our Web App Pen Testing.