What is CVE-2022-26233?

CVE-2022-26233 is a vulnerability in N/a. Published 2022-04-03.

Is CVE-2022-26233 known to be exploited?

4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2022-26233

Barco Control Room Management through Suite 2.9 Build 0275 was discovered to be vulnerable to directory traversal, allowing attackers to access sensitive information and components. Requests must begin with the "GET /..\.." substring.

EPSS: 0.700 (98.7th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

20142995/nuclei-templates
ARPSyndicate/cvemon
ARPSyndicate/kenzer-templates
karimhabush/cyberowl

References

seclists.org/fulldisclosure/2022/Apr/0 (x_refsource_MISC)
packetstormsecurity.com/files/166577/Barco-Control-Room-Management-Suite-Direct… (x_refsource_MISC)

Frequently asked questions

What is CVE-2022-26233?: CVE-2022-26233 is a vulnerability in N/a. Published 2022-04-03.
Is CVE-2022-26233 known to be exploited?: 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.