CVE-2022-36243

Shop Beat Solutions (pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Directory Traversal via server.shopbeat.co.za. Information Exposure Through Directory Listing vulnerability in "studio" software of Shop Beat. This issue affects: Shop Beat studio studio versions prior to 3.2.57 on arm.
References
Link Resource
https://www.shopbeat.co.za Product
Configurations

Configuration 1 (hide)

cpe:2.3:a:shopbeat:shop_beat_media_player:*:*:*:*:*:*:arm:*

History

02 Jun 2023, 19:44

Type Values Removed Values Added
CWE CWE-22
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.3
First Time Shopbeat shop Beat Media Player
Shopbeat
References (MISC) https://www.shopbeat.co.za - (MISC) https://www.shopbeat.co.za - Product
CPE cpe:2.3:a:shopbeat:shop_beat_media_player:*:*:*:*:*:*:arm:*

30 May 2023, 21:10

Type Values Removed Values Added
New CVE

Information

Published : 2023-05-30 20:15

Updated : 2024-02-28 20:13


NVD link : CVE-2022-36243

Mitre link : CVE-2022-36243

CVE.ORG link : CVE-2022-36243


JSON object : View

Products Affected

shopbeat

  • shop_beat_media_player
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-548

Exposure of Information Through Directory Listing