CVE-2022-38451

Published: 2023-01-30T11:15Z

Last Modified: 2024-11-21T07:16Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A directory traversal vulnerability exists in the httpd update.cgi functionality of FreshTomato 2022.5. A specially crafted HTTP request can lead to arbitrary file read. An attacker can send an HTTP request to trigger this vulnerability. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt