CVE-2022-39838

CVE-2022-39838

EPSS 1.5%

Systematic FIX Adapter (ALFAFX) 2.4.0.25 13/09/2017 allows remote file inclusion via a UNC share pathname, and also allows absolute path traversal to local pathnames.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/jet-pentest/CVE-2022-39838 http://systematicalpha.com/company http://systematicalpha.com/trading-programs/systematic-alpha-fx-master-fund