1 results (0.005 seconds)
CVSS: 9.8EPSS: 94%CPEs: 2EXPL: 5
CVSS: 9.8EPSS: 94%CPEs: 2EXPL: 5CVE-2021-21978 – VMware View Planner 4.6 Remote Code Execution
https://notcve.org/view.php?id=CVE-2021-21978
03 Mar 2021 — VMware View Planner 4.x prior to 4.6 Security Patch 1 contains a remote code execution vulnerability. Improper input validation and lack of authorization leading to arbitrary file upload in logupload web application. An unauthorized attacker with network access to View Planner Harness could upload and execute a specially crafted file leading to remote code execution within the logupload container. VMware View Planner versión 4.x anterior a 4.6 Security Parche 1, contiene una vulnerabilidad de ejecución de c... • https://packetstorm.news/files/id/161879 • CWE-20: Improper Input Validation CWE-862: Missing Authorization •