cvedb.io
CVE-2022-42733
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2022-11-17T17:15:12.107 · Last modified 2026-06-17T05:05:12.613

Summary

A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper read access control that could allow files to be retrieved from any folder accessible to the account assigned to the website’s application pool.

Affected products

siemens — syngo_dynamics_cardiovascular_imaging_and_information_system

Does this affect you?

Add your gear to cvedb and we'll alert you only when siemens ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.