CVE-2022-39838 Information

Description

Systematic FIX Adapter (ALFAFX) 2.4.0.25 13/09/2017 allows remote file inclusion via a UNC share pathname and also allows absolute path traversal to local pathnames.

Reference

https://github.com/jet-pentest/CVE-2022-39838 http://systematicalpha.com/company http://systematicalpha.com/trading-programs/systematic-alpha-fx-master-fund