Limited Black Friday Offer:

AVEVA InTouch Access Anywhere Secure Gateway - Local File Inclusion CVE-2022-23854 Scanner

There is a local file inclusion vulnerability in AVEVA InTouch Access Anywhere Secure Gateway, which allow remote attackers to read arbitrary files.

Short Info

Level

High

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Url

Parent Category

AVEVA InTouch Access Anywhere Secure Gateway - Local File Inclusion CVE-2022-23854 Scanner Detail

AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server.

https://www.cisa.gov/uscert/ics/advisories/icsa-22-342-02