High severity7.5NVD Advisory· Published Nov 10, 2022· Updated Jun 17, 2026
CVE-2022-39037
CVE-2022-39037
Description
Agentflow BPM file download function has a path traversal vulnerability. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and download arbitrary system files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<4.0 <3.7+ 1 more
- (no CPE)range: <4.0 <3.7
- (no CPE)range: 4.0.0.1183.552
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.