The Device42 Remote Collector before 17.05.01 does not sanitize user input in its SNMP Connectivity utility. This allows an authenticated attacker (with access to the console application) to execute arbitrary OS commands and escalate privileges.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-09-17T14:46:17
Updated: 2024-08-04T03:08:32.067Z
Reserved: 2021-09-17T00:00:00
Link: CVE-2021-41315
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-09-17T15:15:07.620
Modified: 2024-11-21T06:26:02.350
Link: CVE-2021-41315
Redhat
No data.