High severity7.2NVD Advisory· Published Nov 14, 2022· Updated Jun 17, 2026
CVE-2022-45184
CVE-2022-45184
Description
The Web Server in Ironman Software PowerShell Universal v3.x and v2.x allows for directory traversal outside of the configuration directory, which allows a remote attacker with administrator privilege to create, delete, update, and display files outside of the configuration directory via a crafted HTTP request to particular endpoints in the web server. Patched Versions are 3.5.3 and 3.4.7.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Ironman Software/PowerShell Universaldescription
- Range: v3.x and v2.x (prior to 3.5.3 and 3.4.7)
Patches
Vulnerability mechanics
References
3- blog.ironmansoftware.com/psu-2022-11-cve/nvdVendor Advisory
- docs.powershelluniversal.com/changelognvdRelease NotesVendor Advisory
- ironmansoftware.comnvdVendor Advisory
News mentions
0No linked articles in our index yet.