CVE-2021-42338

Name of the Vulnerable Software and Affected Versions 4MOSAn GCB Doctor (affected versions not specified)

Description The issue is related to improper validation of Cookie on the login page, allowing an unauthenticated remote attacker to bypass authentication by code injection in the cookie. This enables the attacker to arbitrarily manipulate the system or interrupt services by uploading and executing arbitrary files.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.