Skip to main content

Filecloud

4 CVEs product

Monthly

CVE-2022-39833 HIGH POC This Week

FileCloud Versions 20.2 and later allows remote attackers to potentially cause unauthorized remote code execution and access to reported API endpoints via a crafted HTTP request. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection Filecloud
NVD GitHub
CVSS 3.1
7.2
EPSS
2.6%
CVE-2022-1958 MEDIUM This Month

A vulnerability classified as critical has been found in FileCloud. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Filecloud
NVD VulDB
CVSS 3.1
6.5
EPSS
0.7%
CVE-2022-24633 MEDIUM This Month

All versions of FileCloud prior to 21.3 are vulnerable to user enumeration. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Filecloud
NVD
CVSS 3.1
5.3
EPSS
0.8%
CVE-2020-26524 MEDIUM This Month

CodeLathe FileCloud before 20.2.0.11915 allows username enumeration. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Filecloud
NVD GitHub
CVSS 3.1
5.3
EPSS
1.4%
EPSS 3% CVSS 7.2
HIGH POC This Week

FileCloud Versions 20.2 and later allows remote attackers to potentially cause unauthorized remote code execution and access to reported API endpoints via a crafted HTTP request. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection Filecloud
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM This Month

A vulnerability classified as critical has been found in FileCloud. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Filecloud
NVD VulDB
EPSS 1% CVSS 5.3
MEDIUM This Month

All versions of FileCloud prior to 21.3 are vulnerable to user enumeration. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Filecloud
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

CodeLathe FileCloud before 20.2.0.11915 allows username enumeration. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Filecloud
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy