4 matches found
CVE-2021-43934
creationtimestamp| type| source ---|---|--- 2022-04-28 18:24:19+00:00| seen| https://t.me/cibsecurity/41575...
CVE-2021-43934 Elcomplus SmartPtt Unrestricted Upload of File with Dangerous Type
Elcomplus SmartPTT is vulnerable as the backup and restore system does not adequately validate upload requests, enabling a malicious user to potentially upload arbitrary files...
CVE-2021-43934
CVE-2021-43934 affects Elcomplus SmartPTT SCADA/SCADA Server (SmartPTT SCADA Server v1.4; SmartPTT) where the backup and restore/upload functionality does not adequately validate uploads, enabling an attacker to upload arbitrary files (Unrestricted Upload of File with Dangerous Type). The CVSS v3...
Elcomplus SmartPTT SCADA
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low attack complexity Vendor: Elcomplus Equipment: SmartPTT Vulnerabilities: Path Traversal, Unrestricted Upload of File with Dangerous Type, Improper Authorization, Cross-site Scripting 2. RISK EVALUATION Successful exploitation...