Path Traversal Vulnerability in RONDS EPM version 1.19.5

Path Traversal Vulnerability in RONDS EPM version 1.19.5

CVE-2022-2893 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

RONDS EPM version 1.19.5 does not properly validate the filename parameter, which could allow an unauthorized user to specify file paths and download files.  

Learn more about our User Device Pen Test.