| |
Vulnerability CVE-2022-2106
Published: 2022-06-27
| Description: |
Elcomplus SmartICS v2.3.4.0 does not validate the filenames sufficiently, which enables authenticated administrator-level users to perform path traversal attacks and specify arbitrary files. |
Type:
CWE-23 (Relative Path Traversal)
References: |
https://www.cisa.gov/uscert/ics/advisories/icsa-22-174-05
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
