CVE-2021-32933
MDT AutoSave Command Injection
An attacker could leverage an API to pass along a malicious file that could then manipulate the process creation command line in MDT AutoSave versions prior to v6.02.06 and run a command line argument. This could then be leveraged to run a malicious process.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:H
Productos afectados
MDT Software · A4SPMDT Software · AutoSave for System Platform (A4SP)MDT Software · MDT AutoSave¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →