LRM does not restrict the types of files that can be uploaded to the affected product. A malicious actor can upload any file type, including executable code that allows for a remote code exploit.
CPE | Name | Operator | Version |
---|---|---|---|
local_run_manager | ge | 1.3 | |
local_run_manager | le | 3.1 |