Advisory 2022-03/2 Potential Improper Authorization Check Vulnerability
Improper authorization vulnerability
Security Advisory Date | March 22, 2022 |
Vulnerability Type | Potential unauthorized data access. |
Severity factors | This vulnerability has a medium severity rating. |
Versions affected | FileCloud Versions 20.2 and later |
Version fixed | FileCloud Version 21.3.3.18468 |
Description
This vulnerability enables authenticated users to change phone numbers of other users whose userids are known to them.
Fix
This has been fixed in FileCloud version 21.3.3.18468.