CVE-2024-22096
CVSS V2 None
CVSS V3 None
Description
In Rapid Software LLC's Rapid SCADA versions prior to Version 5.8.4, an attacker can append path traversal characters to the filename when using a specific command, allowing them to read arbitrary files from the system.
Overview
- CVE ID
- CVE-2024-22096
- Assigner
- icscert
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-02-01T23:15:06.983Z
- Last Modified Date
- 2024-02-01T23:15:06.983Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.cisa.gov/news-events/ics-advisories/icsa-24-011-03 | |
| https://rapidscada.org/contact/ |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-22096 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22096 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-26 09:20:43 | Added to TrackCVE |