Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:34 p.m.9 views

CVE-2021-43930

Elcomplus SmartPTT is vulnerable as the backup and restore system does not adequately validate download requests, enabling malicious users to perform path traversal attacks and potentially download arbitrary files from the system...

4.9CVSS7AI score0.00997EPSS
Exploits0
Cvelist
Cvelist
added 2022/04/28 2:53 p.m.26 views

CVE-2021-43930 Elcomplus SmartPtt Path Traversal

Elcomplus SmartPTT is vulnerable as the backup and restore system does not adequately validate download requests, enabling malicious users to perform path traversal attacks and potentially download arbitrary files from the system...

4.9CVSS5.5AI score0.00997EPSS
Exploits0References1
CVE
CVE
added 2022/04/28 2:53 p.m.78 views

CVE-2021-43930

CVE-2021-43930 affects Elcomplus SmartPTT/SmartPTT SCADA Server backup and restore functionality. The root cause is improper validation of download requests in the backup/restore path traversal flow, enabling an attacker to access files outside the intended directory. Exploitation could allow dow...

4.9CVSS5.6AI score0.00997EPSS
Exploits0References1Affected Software1
ICS
ICS
added 2022/04/19 12:0 a.m.67 views

Elcomplus SmartPTT SCADA

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION : Exploitable remotely/low attack complexity Vendor: Elcomplus Equipment: SmartPTT Vulnerabilities: Path Traversal, Unrestricted Upload of File with Dangerous Type, Improper Authorization, Cross-site Scripting 2. RISK EVALUATION Successful exploitation...

9.8CVSS8.3AI score0.01129EPSS
Exploits0References5
Rows per page
Query Builder