CVE-2021-32961

Published: Apr 1, 2022Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

A getfile function in MDT AutoSave versions prior to v6.02.06 enables a user to supply an optional parameter, resulting in the processing of a request in a special manner. This can result in the execution of an unzip command and place a malicious .exe file in one of the locations the function looks for and get execution capabilities.

Affected (4)

Products: Auvesy Mdt: Autosave, Autosave For System Platform

Auvesy Mdt

2 products

Autosave

Autosave For System Platform

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Auvesy Mdt Autosave	Before 6.02.06
Auvesy Mdt Autosave	From 7.00 to 7.04
Auvesy Mdt Autosave For System Platform	Before 4.01
Auvesy Mdt Autosave For System Platform	Version 5.00

Related CWEs

CWE-434

Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

References (2)

https://www.cisa.gov/uscert/ics/advisories/icsa-21-189-02

Source: ics-cert@hq.dhs.gov

MitigationThird Party AdvisoryUS Government Resource

https://www.cisa.gov/uscert/ics/advisories/icsa-21-189-02

Source: af854a3a-2127-422b-91ae-364da2661108

MitigationThird Party AdvisoryUS Government Resource

Timeline

No history available yet.