Security Advisory

CVE-2022-38451

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-01-30 10:11:51

Last updated 2024-08-03 10:54:03

Assigner talos

State PUBLISHED

Description

A directory traversal vulnerability exists in the httpd update.cgi functionality of FreshTomato 2022.5. A specially crafted HTTP request can lead to arbitrary file read. An attacker can send an HTTP request to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗