Tag :
Cyber Security

1. About CVE-2022-44635

Vulnerability Name Apache Fineract File Upload Vulnerability
Attack Type Arbitrary File Upload
Time Discovered 2022-12-01
Updated Time 2022-12-01
CVE ID CVE-2022-44635

2. Summary

This vulnerability exists in the file upload component of Apache Fine. Due to improper handling of the upload path, there is a directory traversal problem. An authenticated attacker can use this vulnerability to upload malicious files on a remote server, execute remote code execution attacks, and finally obtain the highest privileges of the server.

3. Affected Versions

Apache Fineract ≤ 1.8.0

4. Solution

Currently, the vendor had issued a security patch to fix the vulnerability. The official link is as follows: https://fineract.apache.org

Listen To This Post

Search

Keyword maximum 256 character

Get in Touch

Get in Touch with Sangfor Team for Business Inquiry

Name
Email Address
Business Phone Number
Tell us about your project requirements

Related Articles

CVE-2024-47575: Fortinet FortiManager Authentication Vulnerability

Date : 25 Oct 2024
Read Now

CVE-2024-38819: Path Traversal Vulnerability

Date : 19 Oct 2024
Read Now

CVE-2024-40766: SonicWALL SonicOS Access Control Flaw Vulnerability

Date : 12 Sep 2024
Read Now

See Other Product

Cyber Command - NDR Platform
Endpoint Secure
Internet Access Gateway (IAG)
Sangfor Network Secure - Next Generation Firewall
Platform-X
Sangfor Access Secure

Meet the Author

About Sangfor

Sangfor Technologies

Sangfor Technologies is a leading vendor of Cyber Security and Cloud Computing solutions. The majority of the blogs that you are seeing here are written by professionals working at Sangfor. We have a team of content writers, product managers and marketing experts who are taking care of writing articles on various topics that are relevant to our audience. Our team ensures that the articles published are factually correct and helpful to our customers and partners to know more about the recent trends on Cyber Security and Cloud, and how it can help their organizations.

  • facebook
  • twitter
  • linkedin
  • youtube
  • instagram
See Author's Detail