CVE-2021-20659

Summary

SolarView Compact SV-CPT-MC310 prior to Ver.6.5 allows an authenticated attacker to upload arbitrary files via unspecified vectors. If the file is PHP script, an attacker may execute arbitrary code.

Affected Software

VendorProductVersion RangeStatus
Contec Co., Ltd.SolarView CompactSV-CPT-MC310 prior to Ver.6.5affected

Weaknesses

  • Unrestricted upload of file with dangerous type

ADP Enrichment

CVE Program Container

Additional References

References