CVE-2021-40870

⚠ KEVEPSS 94.3%

Aviatrix Controller Unrestricted Upload of File

Added to CISA KEV: 1/18/2022

Description

Unrestricted upload of a file with a dangerous type is possible, which allows an unauthenticated user to execute arbitrary code via directory traversal.

Affected packages (0)

No package mapping in OSV.