Vulnerabilities > CVE-2022-39833 - Unspecified vulnerability in Filecloud
Attack vector
NETWORK Attack complexity
LOW Privileges required
HIGH Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
FileCloud Versions 20.2 and later allows remote attackers to potentially cause unauthorized remote code execution and access to reported API endpoints via a crafted HTTP request.
Vulnerable Configurations
References
- https://gist.github.com/DylanGrl/4b4e0d53bb7626b2ab3f834ec5a2b23c
- https://gist.github.com/DylanGrl/4b4e0d53bb7626b2ab3f834ec5a2b23c
- https://www.filecloud.com/supportdocs/fcdoc/latest/server/security-advisories/2022-security-advisories/advisory-2022-10-01-unauthorized-access-and-potential-remote-code-execution
- https://www.filecloud.com/supportdocs/fcdoc/latest/server/security-advisories/2022-security-advisories/advisory-2022-10-01-unauthorized-access-and-potential-remote-code-execution