CVE-2022-1661

Name of the Vulnerable Software and Affected Versions Keysight N6841A RF Sensor versions (affected versions not specified) Keysight N6854A Geo Location Server versions (affected versions not specified)

Description The issue is related to directory traversal errors in the UserFirmwareRequestHandler class implementation of the Keysight N6841A RF Sensor and Keysight N6854A Geo Location Server firmware. This may allow a remote attacker to obtain unauthorized access to protected information. The vulnerability can be exploited to disclose arbitrary operating system files.

Recommendations For Keysight N6841A RF Sensor, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Keysight N6854A Geo Location Server, at the moment, there is no information about a newer version that contains a fix for this vulnerability.