Lucene search

MitreCVELIST:CVE-2021-26473

HistoryJun 08, 2021 - 6:38 p.m.

CVE-2021-26473 Unauthenticated arbitrary file upload and command execution in Vembu products

2021-06-0818:38:48

mitre

www.cve.org

cve-2021-26473

vembubdr

vembuoffsitedr

file upload

command execution

web server

security vulnerability

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.6

Confidence

High

EPSS

0.003

Percentile

69.2%

JSON

In VembuBDR before 4.2.0.1 and VembuOffsiteDR before 4.2.0.1 the http API located at /sgwebservice_o.php action logFilePath allows an attacker to write arbitrary files in the context of the web server process. These files can then be executed remotely by calling the file via the web server.

References

csirt.divd.nl/2021/05/11/Vembu-zero-days/

csirt.divd.nl/cases/DIVD-2020-00011/

csirt.divd.nl/cves/CVE-2021-26473/

www.wbsec.nl/vembu

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.6

Confidence

High

EPSS

0.003

Percentile

69.2%

JSON

Related for CVELIST:CVE-2021-26473