← volver
CVE-2021-33523

CVE-2021-33523

EPSS 1.8%
MashZone NextGen through 10.7 GA allows a remote authenticated user, with access to the admin console, to upload a new JDBC driver that can execute arbitrary commands on the underlying host. This occurs in com.idsscheer.ppmmashup.business.jdbc.DriverUploadController.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/blackarrowsec/advisories/tree/master/2021/CVE-2021-33523https://www.softwareag.com/corporate/products/az/mashzone_nextgen/default