Unrated severityNVD Advisory· Published Sep 9, 2022· Updated Aug 3, 2024

CVE-2022-38614

Description

An issue in the IGB Files and OutfileService features of SmartVista Cardgen v3.28.0 allows attackers to list and download arbitrary files via modifying the PATH parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

SmartVista/Cardgendescription
Smartvista/Cardgenllm-create
Range: = 3.28.0

Patches

Vulnerability mechanics

References

bpcbt.commitrex_refsource_MISC
smartvista.commitrex_refsource_MISC
tf1t.gitbook.io/mycve/smartvista/smartvista-cardgen/list-all-files-in-arbitrary-folder-in-smartvista-cardgen-version-3.28.0-cve-2022-38614mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000