07 Déc 2021
Vulnérabilité CVE-2021-40095 CVE Vulnerability
An issue was discovered in SquaredUp for SCOM 5.2.1.6654. The Download Log feature in System / Maintenance was susceptible to a local file inclusion vulnerability (when processing remote input in the log files downloaded by an authenticated administrator user), leading to the ability to read arbitrary files on the server filesystems. (CVSS:4.0) (Last Update:2021-12-07)
Vulnerability Details : An issue was discovered in SquaredUp for SCOM 5.2.1.6654. The Download Log feature in System / Maintenance was susceptible to a local file inclusion vulnerability (when processing remote input in the log files downloaded by an authenticated administrator user), leading to the ability to read arbitrary files on the server filesystems. Publish Date : 2021-12-07 Last Update Date : 2021-12-07 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2021-40095
- Number Of Affected Versions By Product
- References For CVE-2021-40095
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2021-40095There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |