Sunnet eHRD e-mail delivery task schedule’s serialization function has inadequate input object validation and restriction, which allows a post-authenticated remote attacker with database access privilege, to execute arbitrary code and control the system or interrupt services.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.twcert.org.tw/tw/cp-132-5355-6e339-1.html |
History
No history.
MITRE
Status: PUBLISHED
Assigner: twcert
Published: 2021-12-01T02:00:25.412656Z
Updated: 2024-09-17T03:44:10.703Z
Reserved: 2021-11-04T00:00:00
Link: CVE-2021-43360
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-12-01T02:15:07.433
Modified: 2024-11-21T06:29:07.763
Link: CVE-2021-43360
Redhat
No data.