A critical authentication bypass vulnerability in File Browser allows unauthenticated attackers to impersonate any user or create unauthorized accounts, posing a severe risk to system integrity.

This vulnerability involves an improper authentication check when the application is configured to use proxy authentication (auth.method=proxy). An unauthenticated attacker can manipulate HTTP headers to impersonate any user, including administrative accounts, and trigger unauthorized account creation.

The ability for an unauthenticated attacker to gain administrative access constitutes a total compromise of the file management interface. With a CVSS score of 9.1, this flaw presents a critical risk, enabling unauthorized data exfiltration, modification, or destruction of sensitive files, which could lead to significant operational downtime and regulatory non-compliance.

Immediate Action: Upgrade to the latest version of File Browser immediately to incorporate the required authentication hardening.

Proactive Monitoring: Review web server and application access logs for suspicious HTTP header modifications or unexpected account creation events.

Compensating Controls: If immediate patching is not feasible, restrict access to the File Browser instance via network-level controls or a Web Application Firewall (WAF) configured to inspect and sanitize proxy-related headers.

Public Exploit Available: False

Given the ease of exploitation and the depth of access granted by this vulnerability, organizations must treat this as a high-priority item. Administrators should verify their configuration settings and apply updates immediately to prevent unauthorized administrative takeover.