VYPR
High severity7.5NVD Advisory· Published Mar 6, 2023· Updated Jun 17, 2026

CVE-2023-22335

CVE-2023-22335

Description

Improper access control vulnerability in SS1 Ver.13.0.0.40 and earlier and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier allows a remote attacker to bypass access restriction and download an arbitrary file of the directory where the product runs. As a result of exploiting this vulnerability with CVE-2023-22336 and CVE-2023-22344 vulnerabilities together, it may allow a remote attacker to execute an arbitrary code with SYSTEM privileges by sending a specially crafted script to the affected device.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: <=2.1.8
  • DOS Co., Ltd./SS1 and Rakuraku PC Cloudv5
    Range: SS1 Ver.13.0.0.40 and earlier, and Rakuraku PC Cloud Agent Ver.2.1.8 and earlier

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.