Name of the Vulnerable Software and Affected Versions LOCMAN:PLM (affected versions not specified)

Description The issue is related to a data exchange module vulnerability in the "ЛОЦМАН WorkFlow" subsystem, which allows for unlimited upload of dangerous file types between different "ЛОЦМАН WorkFlow Импорт-Экспорт" databases. This could enable an attacker to execute arbitrary code by replacing dll libraries, such as wkscli.dll, in the "*ASCONLoodsmanWorkFlow" directory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.