CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-4778

StreamX applications from versions 6.02.01 to 6.04.34 are affected by a path traversal vulnerability that allows authenticated users to get unauthorized access to files on the server's filesystem. StreamX applications using StreamView HTML component with the public web server feature activated are affected.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.8%

CVSS Severity

CVSS v3 Score 6.5

References

https://elvexys.com/products/xpg-gateway-rtu-protocol-converter/streamx-release-notes/
https://elvexys.com/products/xpg-gateway-rtu-protocol-converter/streamx-release-notes/

Products affected by CVE-2022-4778

Elvexys » Streamx » Version: 6.02.01

cpe:2.3:a:elvexys:streamx:6.02.01
Elvexys » Streamx » Version: 6.04.34

cpe:2.3:a:elvexys:streamx:6.04.34

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-4778

Products

Pricing

Contact Us