cvedb.io
CVE-2022-42892
MEDIUM · CVSS 5.3
EPSS exploitation probability: 0%
Published 2022-11-17T17:15:12.880 · Last modified 2026-06-17T05:05:32.227

Summary

A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper write access control that could allow directory listing in any folder accessible to the account assigned to the website’s application pool.

Affected products

siemens — syngo_dynamics_cardiovascular_imaging_and_information_system

Does this affect you?

Add your gear to cvedb and we'll alert you only when siemens ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.