CVE-2021-38452

Name of the Vulnerable Software and Affected Versions Moxa MXview Network Management software versions 3.x through 3.2.2

Description A path traversal issue in the software may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries. The vulnerability is related to insufficient checking of the directory path name, which can be exploited by a remote attacker to create or overwrite arbitrary files.

Recommendations For versions 3.x through 3.2.2, consider restricting access to critical files and directories to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using the software for critical operations that involve file creation or overwrite until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.