logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2021-28271

Description

Soyal Technologies SOYAL 701Server 9.0.1 suffers from an elevation of privileges vulnerability which can be used by an authenticated user to change the executable file with a binary choice. The vulnerability is due to improper permissions with the 'F' flag (Full) for 'Everyone'and 'Authenticated Users' group.


Affected Software


CPE Name Name Version
soyal:701clientsql soyal 701clientsql 10.2
soyal:701server soyal 701server 9.0.2
soyal:701serversql soyal 701serversql 10.2

Related