Last active
June 24, 2024 01:17
-
-
Save J0rdanis99/74ae1ee2f9777cdd1c9756f958064d7c to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ---------------------- | |
| CVE-2024-37825 | |
| Software: EnvisionWare - Computer Access & Reservation Control - SelfCheck v1.0 (Application Server) | |
| Issue: Directory Traversal | |
| ---------------------- | |
| Description: An issue in EnvisionWare's SelfCheck v1.0 application server allows remote, unauthenticated attackers on the same network to perform a directory traversal. This could allow access to sensitive data on the underlying host, facilitating targeted attacks to compromise the SelfCheck server. | |
| Remediation: EnvisionWare have stated that the issue fix was released in the OneStop 3.2.0.27184 Hotfix (May 2024). It was not disclosed as to which prior software versions were affected by the directory traversal issue. | |
| ---------------------- | |
| Reference: https://www.envisionware.com/pcres/?lang=au |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment