NotCVE - vendor:"Leostream" product:"Connection Broker" version:"9.0.40.17"

2 results (0.004 seconds)

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0

CVE-2021-41550

https://notcve.org/view.php?id=CVE-2021-41550

Leostream Connection Broker 9.0.40.17 allows administrator to upload and execute Perl code. Leostream Connection Broker versión 9.0.40.17, permite al administrador cargar y ejecutar código Perl • https://leostream.com/wp-content/uploads/2018/11/Leostream_release_notes.pdf https://www.leostream.com/resource/leostream-connection-broker-9-0 • CWE-434: Unrestricted Upload of File with Dangerous Type •

CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0

CVE-2021-41551

https://notcve.org/view.php?id=CVE-2021-41551

Leostream Connection Broker 9.0.40.17 allows administrators to conduct directory traversal attacks by uploading z ZIP file that contains a symbolic link. Leostream Connection Broker 9.0.40.17, permite a administradores llevar a cabo ataques de salto de directorio mediante la carga de un archivo ZIP que contiene un enlace simbólico • https://leostream.com/wp-content/uploads/2018/11/Leostream_release_notes.pdf https://www.leostream.com/resource/leostream-connection-broker-9-0 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •