Lucene search
ApacheCVELIST:CVE-2022-44635HistoryNov 29, 2022 - 12:00 a.m.
CVE-2022-44635 Apache Fineract allowed an authenticated user to perform remote code execution due to path traversal
2022-11-2900:00:00
CWE-22
apache
www.cve.org
apache fineract
remote code execution
path traversal
vulnerability
file upload
version 1.8.0
upgrade
Apache Fineract allowed an authenticated user to perform remote code execution due to a path traversal vulnerability in a file upload component of Apache Fineract, allowing an attacker to run remote code. This issue affects Apache Fineract version 1.8.0 and prior versions. We recommend users to upgrade to 1.8.1.
CNA Affected
[
{
"vendor": "Apache Software Foundation",
"product": "Apache Fineract",
"versions": [
{
"version": "Apache Fineract 1.8",
"status": "affected",
"lessThanOrEqual": "1.8.0",
"versionType": "custom"
},
{
"version": "Apache Fineract 1.7",
"status": "affected",
"lessThanOrEqual": "1.7.0",
"versionType": "custom"
}
]
}
]Related
prion
prion
Path traversal
2022-11-29 15:15:00
osv
osv
CVE-2022-44635
2022-11-29 15:15:10
nvd
nvd
CVE-2022-44635
2022-11-29 15:15:10
cve
cve
CVE-2022-44635
2022-11-29 15:15:10
cnvd
cnvd
Apache Fineract path traversal vulnerability
2022-11-30 00:00:00