Vulnerability Details CVE-2022-39040
aEnrich a+HRD log read function has a path traversal vulnerability. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and download arbitrary system files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 65.5%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2022-39040
-
cpe:2.3:a:aenrich:a+hrd:6.8
-
cpe:2.3:a:aenrich:a+hrd:7.0