CVE-2022-39023

U-Office Force Download function has a path traversal vulnerability. A remote attacker with general user privilege can exploit this vulnerability to download arbitrary system file.
References
Link Resource
https://www.twcert.org.tw/tw/cp-132-6638-08596-1.html Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:edetw:u-office_force:*:*:*:*:*:*:*:*

Information

Published : 2022-10-31 07:15

Updated : 2022-10-31 05:46


NVD link : CVE-2022-39023

Mitre link : CVE-2022-39023

Products Affected
No products.
CWE