Advisory 2024-03/03 Sharp Vulnerability


Vulnerability typesOut of bounds memory write
Severity factors

This vulnerability has a CVSS severity rating of 7.8 high.

FileCloud is updating Sharp, a WebDRM dependency, to version 0.32.6 to fix this vulnerability.

Versions affectedFileCloud version 23.232 is affected.
Version fixedFileCloud version 23.232.1 and later


Description

A Sharp vulnerability could allow a malicious actor to perform an out of bounds memory write.

Fix

FileCloud version 23.232.1.24856 upgrades Sharp to version 0.32.6, which does not include this vulnerability.

What you should do to fix this vulnerability

  • If you are using FileCloud Server version 23.232, we recommended that you update to the latest version, which is 23.232.1.24856 or greater. 
  • If you are using FileCloud Online, your site has already been updated to the latest version.

If you have any questions about this advisory, please contact FileCloud support.