Directory Traversal Vulnerability in IdeaRE RefTree Allows Arbitrary File Download

Directory Traversal Vulnerability in IdeaRE RefTree Allows Arbitrary File Download

CVE-2022-27248 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

A directory traversal vulnerability in IdeaRE RefTree before 2021.09.17 allows remote authenticated users to download arbitrary .dwg files from a remote server by specifying an absolute or relative path when invoking the affected DownloadDwg endpoint. An attack uses the path field to CaddemServiceJS/CaddemService.svc/rest/DownloadDwg.

Learn more about our Cis Benchmark Audit For Server Software.