Vulnerabilities > CVE-2022-38341 - Unspecified vulnerability in Safe FME Server 2021.2.3
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
LOW Availability impact
NONE Summary
Safe Software FME Server v2021.2.5 and below does not employ server-side validation.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- https://community.safe.com/s/article/Known-Issue-Lack-of-server-side-validation-when-creating-a-new-user-in-FME-Server
- https://community.safe.com/s/article/Known-Issue-Lack-of-server-side-validation-when-creating-a-new-user-in-FME-Server
- https://www.cycura.com/blog/safe-software-inc-fme-server-vulnerability-disclosure/
- https://www.cycura.com/blog/safe-software-inc-fme-server-vulnerability-disclosure/