Byzoro · Byzoro Smart S85F Management Platform · CVE-2023-4121
**Name of the Vulnerable Software and Affected Versions**
Byzoro Smart S85F Management Platform versions up to 20230722
**Description**
A critical issue has been found, allowing for unrestricted upload through the manipulation of the `file upload` argument. This can be exploited remotely. The vendor was contacted about this issue but did not respond.
**Recommendations**
For Byzoro Smart S85F Management Platform versions up to 20230722, as a temporary workaround, consider restricting access to the `file upload` argument until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.