CVE-2021-43930

Name of the Vulnerable Software and Affected Versions Elcomplus SmartPTT (affected versions not specified)

Description The issue is related to inadequate validation of download requests in the backup and restore system, allowing malicious users to perform path traversal attacks. This could enable attackers to download arbitrary files from the system. Additionally, the vulnerability may allow remote attackers to write arbitrary files to arbitrary locations in the file system using a specially crafted HTTP request.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.