CVE-2022-41607 V4.5.0 and earlier's API is vulnerable to directory traversal through several methods

CVE-2022-41607 V4.5.0 and earlier's API is vulnerable to directory traversal through several methods

ETIC Telecom Remote Access Server (RAS) is a software package used to remotely access servers and desktop computers via the Internet. It is available in versions for Windows and Linux. ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior is vulnerable to an unspecified directory traversal issue. This could allow an attacker to read sensitive files from the server, including SSH private keys, passwords, scripts, python objects, database files, and more. ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior is vulnerable to an unspecified directory traversal issue. This could allow an attacker to read sensitive files from the server, including SSH private keys, passwords, scripts, python objects, database files, and more. ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior is vulnerable to an unspecified directory traversal issue. This could allow an attacker to read sensitive files from the server, including SSH private keys, passwords, scripts, python objects, database files, and more. ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior is vulnerable to an unspecified directory traversal issue. This could allow an attacker to read sensitive files from the server, including SSH private keys, passwords, scripts, python objects, database files, and more. ETIC Telecom Remote Access Server (RAS) 4.5.0 and prior is vulnerable to an unspecified directory traversal issue. This could allow an attacker

Potential Impact

An attacker could potentially read sensitive files and databases from the server.

Summary of AncillaSoft CVEs

References

Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe