CVE-2021-26612
tobesoft Nexacro platform arbitrary file creation vulnerability
An improper input validation leading to arbitrary file creation was discovered in copy method of Nexacro platform. Remote attackers use copy method to execute arbitrary command after the file creation included malicious code.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
Productos afectados
TOBESOFT · NEXACRO17¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →