High severity7.5NVD Advisory· Published Mar 6, 2023· Updated Jun 17, 2026
CVE-2023-22335
CVE-2023-22335
Description
Improper access control vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to bypass access restriction and download an arbitrary file of the directory where the product runs. As a result of exploiting this vulnerability with CVE-2023-22336 and CVE-2023-22344 vulnerabilities together, it may allow a remote attacker to execute an arbitrary code with SYSTEM privileges by sending a specially crafted script to the affected device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=2.1.8
- DOS Co., Ltd./SS1 and Rakuraku PC Cloudv5Range: SS1 Ver.13.0.0.40 and earlier, and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier
Patches
Vulnerability mechanics
References
2- jvn.jp/en/jp/JVN57224029/nvdThird Party Advisory
- www.dos-osaka.co.jp/news/2023/03/230301.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.