Pau Valls Peleteiro

**Name of the Vulnerable Software and Affected Versions** PMB platform versions 4.0.10 and above **Description** The issue is related to an unrestricted file upload vulnerability. This could allow an attacker to upload a file and gain remote access to the machine, enabling them to access, modify, and execute commands freely. **Recommendations** For versions 4.0.10 and above, update to a newer version that contains a fix for this issue to secure your system. As a temporary workaround, consider restricting file upload capabilities until a patch is available.

**Name of the Vulnerable Software and Affected Versions** PMB Platform versions 4.2.13 and earlier **Description** The issue allows an attacker to upload a file to the environment and enumerate the internal files of a machine by looking at the request response. This enables information exposure in the PMB platform. **Recommendations** For versions 4.2.13 and earlier, as a temporary workaround, consider restricting file upload capabilities to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PMB Platform versions 4.0.10 and above **Description** The issue exists in the file upload functionality on the `/pmb/authorities/import/iimport authorities` endpoint. When a file is uploaded via this resource, the server creates a temporary file that will be deleted after the client sends a POST request to `/pmb/authorities/import/iimport authorities`. However, an attacker can trap and launch the second POST request to prevent the temporary file from being deleted. This allows an attacker to persist temporary files on the server. **Recommendations** For PMB Platform versions 4.0.10 and above, as a temporary workaround, consider restricting access to the `/pmb/authorities/import/iimport authorities` endpoint to minimize the risk of exploitation. Additionally, avoid using the file upload functionality until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.