SUMMARY
The following vulnerability was found in Vocera Report Console.
CVE-2022-46899
Vocera Report Console contains a path traversal vulnerability in the filename parameter for the task execution endpoint of the Report Console software on versions before 5.6.0
CVSS 3.1
5.4 (Medium) – CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
AFFECTED PRODUCTS
SOFTWARE FIXES
Update to the latest version of Vocera Report Console.
TIMELINE
ACKNOWLEDGEMENTS
REFERENCES