CVE-2021-21909

Summary

Specially-crafted command line arguments can lead to arbitrary file deletion in the del .cnt|.log file delete command. An attacker can provide malicious inputs to trigger this vulnerability

Affected Software

VendorProductVersion RangeStatus
n/aGarrett Metal DetectorsGarrett Metal Detectors iC Module CMA Version 5.0affected

Weaknesses

  • CWE-22: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

ADP Enrichment

CVE Program Container

Additional References

References