cvedb.io
CVE-2022-27192
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2022-03-23T22:15:13.373 · Last modified 2026-06-17T04:36:28.453

Summary

The Reporting module in Aseco Lietuva document management system DVS Avilys before 3.5.58 allows unauthorized file download. An unauthenticated attacker can impersonate an administrator by reading administrative files.

Affected products

asseco — dvs_avilys

Does this affect you?

Add your gear to cvedb and we'll alert you only when asseco ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.