CVE-2021-42559
CVE-2021-42559 : CALDERA 2.8.1 and earlier contains multiple startup “requirements” that execute commands when starting the server. The commands can be modified via the REST API, allowing an authenticated user to insert arbitrary commands that will execute on restart. This is a command-injection ...