CVE-2021-39017

Name of the Vulnerable Software and Affected Versions IBM Engineering Lifecycle Optimization - Publishing versions 6.0.6 through 7.0.2

Description The issue allows a remote attacker to upload arbitrary files due to improper access controls. This could potentially lead to unauthorized access or data breaches.

Recommendations For versions 6.0.6 through 7.0.2, consider restricting access to file upload functionalities until a patch is available. As a temporary workaround, review and enforce proper access controls to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.