PT-2021-12682 · Unknown · Anysupport

0X09Al

Published

2021-04-22

Updated

2021-04-26

CVE-2020-7861

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: AnySupport versions prior to 2019.3.21.0

Description: The issue allows directory traversing due to the use of the swprintf function, which can lead to copying files from a management PC to a client PC and potentially result in arbitrary file execution.

Recommendations: For versions prior to 2019.3.21.0, update to version 2019.3.21.0 or later to resolve the issue.

Fix

Relative Path Traversal

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-23CWE-22

Related Identifiers

CVE-2020-7861

Affected Products

Anysupport

PT-2021-12682 · Unknown · Anysupport

CVE-2020-7861

Weakness Enumeration

Related Identifiers

Affected Products

References · 3