PT-2021-14118 · Unknown · Solarview Compact Sv-Cpt-Mc310

Katsunari Yoshioka

+1

·

Published

2021-02-24

·

Updated

2021-03-01

·

CVE-2021-20658

CVSS v2.0

10

Critical

VectorAV:N/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions: SolarView Compact SV-CPT-MC310 versions prior to Ver.6.5
Description: The issue allows an attacker to execute arbitrary OS commands with the web server privilege via unspecified vectors.
Recommendations: For SolarView Compact SV-CPT-MC310 versions prior to Ver.6.5, update to Ver.6.5 or later to resolve the issue.

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2021-20658

Affected Products

Solarview Compact Sv-Cpt-Mc310