Unknown · Systematic Fix Adapter · CVE-2022-39838
**Name of the Vulnerable Software and Affected Versions**
Systematic FIX Adapter (ALFAFX) version 2.4.0.25
**Description**
The issue allows remote file inclusion via a UNC share pathname and also enables absolute path traversal to local pathnames.
**Recommendations**
For version 2.4.0.25, consider restricting access to UNC share pathnames and limiting absolute path traversal to prevent unauthorized file inclusion and access.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.