VYPR
Unrated severityNVD Advisory· Published Mar 14, 2022· Updated Mar 11, 2025

File upload and overwrite to app_data/Config in SmarterTrack v100.0.8019.14010

CVE-2022-24387

Description

With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.14010

Affected products

2
  • Smartertools/Smartertrackllm-fuzzy2 versions
    = v100.0.8019.14010+ 1 more
    • (no CPE)range: = v100.0.8019.14010
    • (no CPE)range: 100.0.8019.x

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.