CVE-2021-37207

Name of the Vulnerable Software and Affected Versions SENRON powermanager V3 (All versions)

Description A vulnerability has been identified where the affected application assigns improper access rights to a specific folder containing configuration files. This could allow an authenticated local attacker to inject arbitrary code and escalate privileges.

Recommendations For all versions of SENRON powermanager V3, consider restricting access to the configuration files folder to prevent arbitrary code injection and privilege escalation until a fix is available. As a temporary workaround, review and adjust the access rights of the specific folder to ensure only authorized access is allowed.