CVE-2022-38613

MEDIUM

SmartVista Cardgen <3.28.0 - Path Traversal

Title source: llm

A Path Traversal vulnerability in SmartVista Cardgen v3.28.0 allows authenticated attackers to read arbitrary files in the system.

Core 3

Core References

Product x_refsource_misc

Not Applicable x_refsource_misc

Exploit, Third Party Advisory x_refsource_misc

CVSS v3 6.5

EPSS 0.0097

EPSS Percentile 57.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-22

Status published

Products (1)

bpcbt/smartvista_cardgen 3.28.0

Published Sep 09, 2022

Tracked Since Feb 18, 2026