Improper authorization vulnerability
|Security Advisory Date||March 22, 2022|
|Vulnerability Type||Potential unauthorized data access.|
This vulnerability has a medium severity rating.
|Versions affected||FileCloud Versions 20.2 and later|
|Version fixed||FileCloud Version 188.8.131.5268|
This vulnerability enables authenticated users to change phone numbers of other users whose userids are known to them.
This has been fixed in FileCloud version 184.108.40.20668.