CVE-2021-33721

Name of the Vulnerable Software and Affected Versions: SINEC NMS versions prior to V1.0 SP2

Description: A vulnerability has been identified in the application where it incorrectly neutralizes special elements when creating batch operations, leading to command injection. An authenticated remote attacker with administrative privileges could exploit this issue to execute arbitrary code on the system with system privileges.

Recommendations: For versions prior to V1.0 SP2, update to V1.0 SP2 or later to resolve the issue. As a temporary workaround, consider restricting administrative access to minimize the risk of exploitation.