CVE-2021-32957

Name of the Vulnerable Software and Affected Versions MDT AutoSave versions prior to v6.02.06

Description A function in the software is used to retrieve system information for a specific process, executing multiple commands and summarizing the information into an XML. This process gives the full path to the executable, making it vulnerable to binary hijacking.

Recommendations For versions prior to v6.02.06, update to version v6.02.06 or later to resolve the issue. As a temporary workaround, consider restricting access to the function that retrieves system information to minimize the risk of exploitation.