CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-34924

Lanling OA Landray Office Automation (OA) internal patch number #133383/#137780 contains an arbitrary file read vulnerability via the component /sys/ui/extend/varkind/custom.jsp.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.2%

CVSS Severity

CVSS v3 Score 7.5

References

https://codeantenna.com/a/DXQfemaZEH
https://developpaper.com/lanling-oa-foreground-arbitrary-file-reading-vulnerability-exploitation/
https://codeantenna.com/a/DXQfemaZEH
https://developpaper.com/lanling-oa-foreground-arbitrary-file-reading-vulnerability-exploitation/

Products affected by CVE-2022-34924

Landray » Landray Office Automation » Version: N/A

cpe:2.3:a:landray:landray_office_automation:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-34924

Products

Pricing

Contact Us