Critical severity9.1NVD Advisory· Published Sep 20, 2022· Updated Jun 17, 2026
CVE-2022-38340
CVE-2022-38340
Description
Safe Software FME Server v2021.2.5, v2022.0.0.2 and below was discovered to contain a Path Traversal vulnerability via the component fmedataupload.
Affected products
2- Safe Software/FME Serverdescription
- Range: <=2022.0.0.2
Patches
Vulnerability mechanics
References
3- community.safe.com/s/article/Known-Issue-FME-Server-vulnerability-with-arbitrary-path-traversal-and-file-uploadnvdPatchVendor Advisory
- community.safe.com/s/article/Known-Issue-Arbitrary-file-upload-with-any-authenticated-FME-Server-accountnvdThird Party Advisory
- www.cycura.com/blog/safe-software-inc-fme-server-vulnerability-disclosure/nvdProduct
News mentions
0No linked articles in our index yet.