CVE-2022-46309

Vitals ESP upload function has a path traversal vulnerability. A remote attacker with general user privilege can exploit this vulnerability to access arbitrary system files. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt