CVE-2024-22096 Information

Description

In Rapid Software LLC’s Rapid SCADA versions prior to Version 5.8.4 an attacker can append path traversal characters to the filename when using a specific command allowing them to read arbitrary files from the system.

Reference

https://www.cisa.gov/news-events/ics-advisories/icsa-24-011-03 https://rapidscada.org/contact/