CVE-2024-37825
MEDIUMEnvisionWare Computer Access & Reservation Control SelfCheck <1.0 -...
Title source: llmDescription
An issue in EnvisionWare Computer Access & Reservation Control SelfCheck v1.0 (fixed in OneStop 3.2.0.27184 Hotfix May 2024) allows unauthenticated attackers on the same network to perform a directory traversal.
References (3)
Core 3
Core References
Various Sources
https://www.envisionware.com/?lang=au
Various Sources
https://www.envisionware.com/pcres/?lang=au
Scores
CVSS v3
5.4
EPSS
0.0042
EPSS Percentile
33.5%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-22
Status
published
Published
Jun 24, 2024
Tracked Since
Feb 18, 2026