Vulnerabilities > Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-26 | CVE-2021-39369 | Path Traversal vulnerability in Philips products In Philips (formerly Carestream) Vue MyVue PACS through 12.2.x.x, the VideoStream function allows Path Traversal by authenticated users to access files stored outside of the web root. | 6.5 |
| 2022-12-25 | CVE-2022-44016 | Path Traversal vulnerability in Simmeth Lieferantenmanager An issue was discovered in Simmeth Lieferantenmanager before 5.6. | 7.5 |
| 2022-12-25 | CVE-2022-45894 | Path Traversal vulnerability in Planetestream Planet Estream GetFile.aspx in Planet eStream before 6.72.10.07 allows ..\ directory traversal to read arbitrary local files. | 6.5 |
| 2022-12-23 | CVE-2022-23854 | Path Traversal vulnerability in Aveva Intouch Access Anywhere 2020 AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server. | 7.5 |
| 2022-12-23 | CVE-2022-47945 | Path Traversal vulnerability in Thinkphp ThinkPHP Framework before 6.0.14 allows local file inclusion via the lang parameter when the language pack feature is enabled (lang_switch_on=true). | 9.8 |
| 2022-12-23 | CVE-2022-46171 | Path Traversal vulnerability in Tauri Tauri is a framework for building binaries for all major desktop platforms. | 7.7 |
| 2022-12-23 | CVE-2022-46492 | Path Traversal vulnerability in Nbnbk Project Nbnbk nbnbk commit 879858451d53261d10f77d4709aee2d01c72c301 was discovered to contain an arbitrary file read vulnerability via the component /api/Index/getFileBinary. | 6.5 |
| 2022-12-22 | CVE-2022-43857 | Path Traversal vulnerability in IBM I 7.3/7.4/7.5 IBM Navigator for i 7.3, 7.4 and 7.5 could allow an authenticated user to access IBM Navigator for i log files they are authorized to but not while using this interface. | 4.3 |
| 2022-12-22 | CVE-2022-43858 | Path Traversal vulnerability in IBM I 7.3/7.4/7.5 IBM Navigator for i 7.3, 7.4, and 7.5 could allow an authenticated user to access the file system and download files they are authorized to but not while using this interface. | 4.3 |
| 2022-12-21 | CVE-2022-36221 | Path Traversal vulnerability in Nokia Fastmile Firmware 3Tg00118Abad52 Nokia Fastmile 3tg00118abad52 is affected by an authenticated path traversal vulnerability which allows attackers to read any named pipe file on the system. | 6.5 |