CVE-2021-32933
MDT AutoSave Command Injection
An attacker could leverage an API to pass along a malicious file that could then manipulate the process creation command line in MDT AutoSave versions prior to v6.02.06 and run a command line argument. This could then be leveraged to run a malicious process.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:H
Produtos afetados
MDT Software · A4SPMDT Software · AutoSave for System Platform (A4SP)MDT Software · MDT AutoSaveQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →