CVE-2022-23854 Information

Description

AVEVA InTouch Access Anywhere versions 2020 R2 and older are vulnerable to a path traversal exploit that could allow an unauthenticated user with network access to read files on the system outside of the secure gateway web server.

Reference

https://www.cisa.gov/uscert/ics/advisories/icsa-22-342-02