CVE-2021-21904

Summary

A directory traversal vulnerability exists in the CMA CLI setenv command of Garrett Metal Detectors’ iC Module CMA Version 5.0. An attacker can provide malicious input to trigger this vulnerability

Affected Software

VendorProductVersion RangeStatus
n/aGarrett Metal DetectorsGarrett Metal Detectors iC Module CMA Version 5.0affected

Weaknesses

  • CWE-22: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

ADP Enrichment

CVE Program Container

Additional References

References