Vulnerabilities > CVE-2022-22847 - Unspecified vulnerability in Formpipe Lasernet

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

formpipe

NVD

Published: 2022-01-10

Updated: 2022-01-18

Summary

Formpipe Lasernet before 9.13.3 allows file inclusion in Client Web Services (either by an authenticated attacker, or in a configuration that does not require authentication).

Vulnerable Configurations

Part	Description	Count
Application	Formpipe Formpipe Lasernet *	1

References

https://support.formpipe.com/news/posts/vulnerability-in-the-client-web-service-of-lasernet-9-and-older