Path Traversal in Shop Beat Studio
CVE-2022-36243
Shop Beat Solutions (pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Directory Traversal via server.shopbeat.co.za. Information Exposure Through Directory Listing vulnerability in "studio" software of Shop Beat. This i…
EPSS: 0.007 (50.0th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N.
Affected products
- Shop Beat Studio — versions studio
- Shopbeat Shop_beat_media_player
Weakness classification (CWE)
References
- support@shopbeat.co.za (Product)
Frequently asked questions
- What is CVE-2022-36243?
- CVE-2022-36243 is a medium-severity vulnerability in Shop Beat Studio, classified under CWE-548. CVSS score: 5.3/10. Published 2023-05-30.
- How severe is CVE-2022-36243?
- Medium severity. CVSS v3 base score is 5.3 out of 10.