CVE-2021-26473

Name of the Vulnerable Software and Affected Versions VembuBDR versions prior to 4.2.0.1 VembuOffsiteDR versions prior to 4.2.0.1

Description The issue allows an attacker to write arbitrary files in the context of the web server process through the http API located at "/sgwebservice o.php" with the action "logFilePath". These files can then be executed remotely by calling the file via the web server. This can be achieved via an unauthenticated file write using a GET request that specifies a file's name and content.

Recommendations For VembuBDR versions prior to 4.2.0.1, update to version 4.2.0.1 or later to resolve the issue. For VembuOffsiteDR versions prior to 4.2.0.1, update to version 4.2.0.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the "/sgwebservice o.php" API endpoint to minimize the risk of exploitation.