Cdata · C-Data Onu4Ferw · CVE-2021-44132
**Name of the Vulnerable Software and Affected Versions**
C-DATA ONU4FERW version 2.1.13 X139
**Description**
A command injection issue in the function formImportOMCIShell allows attackers to execute arbitrary commands via a crafted file.
**Recommendations**
For version 2.1.13 X139, consider disabling the formImportOMCIShell function until a patch is available to prevent command injection attacks.