CVE-2021-22719

Name of the Vulnerable Software and Affected Versions C-Bus Toolkit versions 1.15.7 and prior

Description A path traversal vulnerability exists that could allow remote code execution when a file is uploaded. This issue arises due to improper limitation of a pathname to a restricted directory, enabling a remote attacker to execute arbitrary code during file upload.

Recommendations For versions 1.15.7 and prior, consider restricting file upload functionality until a patch is available. As a temporary workaround, limit access to file upload features to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.