CVE-2022-50932
Published: 13 January 2026
Summary
CVE-2022-50932 is a high-severity Path Traversal (CWE-22) vulnerability in Kyocera Command Center Rx. Its CVSS base score is 8.7 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 12.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 AC-3 (Access Enforcement) and SI-10 (Information Input Validation).
Deeper analysis
CVE-2022-50932 is a directory traversal vulnerability (CWE-22) in the Kyocera Command Center RX software running on the ECOSYS M2035dn printer. The flaw allows unauthenticated attackers to read sensitive system files by manipulating file paths under the /js/ endpoint. Exploitation involves sending crafted requests such as /js/../../../../.../etc/passwd%00.jpg, where a null-byte termination enables access to critical files like /etc/passwd and /etc/shadow. The vulnerability carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).
Unauthenticated attackers can exploit this issue remotely over the network with low attack complexity and no privileges or user interaction required. Successful exploitation results in high-impact confidentiality violations, enabling disclosure of sensitive system information such as user account details and password hashes from files like /etc/passwd and /etc/shadow.
Advisories and references include a proof-of-concept exploit published on Exploit-DB (https://www.exploit-db.com/exploits/50738), the Kyocera Command Center RX product page (https://www.kyoceradocumentsolutions.com/asia/en/products/business-application/command-center-rx.html), and a Vulncheck advisory (https://www.vulncheck.com/advisories/kyocera-command-center-rx-ecosys-mdn-directory-traversal-file-disclosure-unauthenticated) detailing the unauthenticated directory traversal and file disclosure.
OWASP Top 10 for Web (2025)
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-2617
Vulnerability details
Kyocera Command Center RX ECOSYS M2035dn contains a directory traversal vulnerability that allows unauthenticated attackers to read sensitive system files by manipulating file paths under the /js/ path. Attackers can exploit the issue by sending requests like /js/../../../../.../etc/passwd%00.jpg (null-byte appended…
more
traversal) to access critical files such as /etc/passwd and /etc/shadow.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Directory traversal on public-facing printer web UI directly enables remote unauthenticated file read of /etc/passwd and /etc/shadow (T1003.008, T1552.001) via crafted requests to a web application (T1190).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly prevents directory traversal vulnerabilities by validating and sanitizing manipulated file path inputs in HTTP requests to the /js/ endpoint.
Requires identification, reporting, and timely patching of the specific directory traversal flaw in Kyocera Command Center RX software.
Enforces approved access authorizations to restrict file system access to only intended /js/ directory contents, blocking traversal to sensitive files like /etc/passwd.