Advisory 2022-12/03 Potential Sensitive File Path Exposure
|Vulnerability Type||Broken access controls|
This vulnerability has a medium severity rating.
|Versions affected||FileCloud Versions 22.1 and earlier|
|Version fixed||FileCloud Version 22.1 and later|
This vulnerability allows an authenticated user access to some file names of another user.
This has been fixed in FileCloud version 184.108.40.20645.
What you should do to fix this vulnerability
- If you are using FileCloud Server, it is recommended that you update to the latest version, which is 220.127.116.1145 or greater. This will resolve the issue.
- If you are using FileCloud Online, your site has already been updated to the latest version.
If you have any questions about this advisory, please contact FileCloud support.