CVE-2022-34924

CVE-2022-34924

EPSS 0.5%

Lanling OA Landray Office Automation (OA) internal patch number #133383/#137780 contains an arbitrary file read vulnerability via the component /sys/ui/extend/varkind/custom.jsp.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://codeantenna.com/a/DXQfemaZEH https://developpaper.com/lanling-oa-foreground-arbitrary-file-reading-vulnerability-exploitation/