Security Advisory

CVE-2022-22701

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-07 21:59:38

Last updated 2024-08-03 03:21:48

Assigner Fluid Attacks

State PUBLISHED

Description

PartKeepr versions up to v1.4.0, loads attachments using a URL while creating a part and allows the use of the file:// URI scheme, allowing an authenticated user to read local files.

← Browse all CVEs View on cve.org ↗