Advisory 2022-12/01 Unauthorized data access with certain manipulated input server paths
| Vulnerability Type | Directory traversal |
| Severity factors | This vulnerability has a high severity rating. |
| Versions affected | FileCloud Versions 22.1 and earlier |
| Version fixed | FileCloud Version 22.1 and later |
Description
This vulnerability enables potential unauthorized data access with some specially manipulated and modified server paths.
Fix
This has been fixed in FileCloud version 22.1.0.20845.
What you should do to fix this vulnerability
- If you are using FileCloud Server, it is recommended that you update to the latest version, which is 22.1.0.20845 or greater. This will resolve the issue.
- If you are using FileCloud Online, your site has already been updated to the latest version.
If you have any questions about this advisory, please contact FileCloud support.