CVE-2019-7670

Name of the Vulnerable Software and Affected Versions Prima Systems FlexAir versions 2.3.38 and prior

Description The application fails to properly neutralize special elements, potentially allowing attackers to modify intended OS commands sent to downstream components. This could enable attackers to execute commands directly on the operating system.

Recommendations For versions 2.3.38 and prior, update to a version later than 2.3.38 to resolve the issue. As a temporary workaround, consider restricting access to the application to minimize the risk of exploitation.