Name of the Vulnerable Software and Affected Versions LOCMAN:PLM (affected versions not specified)

Description The issue is related to the unlimited upload of dangerous file types in the LOCMAN WorkFlow and LOCMAN WorkFlow Configurator modules of the LOCMAN:PLM system. Exploitation of this issue could allow an attacker to execute arbitrary code by replacing dll libraries, such as WINNSI.DLL, in specific directories.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.