CVE-2021-22908

Summary

A buffer overflow vulnerability exists in Windows File Resource Profiles in 9.X allows a remote authenticated user with privileges to browse SMB shares to execute arbitrary code as the root user. As of version 9.1R3, this permission is not enabled by default.

Affected Software

VendorProductVersion RangeStatus
n/aPulse Connect SecureFixed in 9.1R11.5affected

Weaknesses

  • CWE-120: Classic Buffer Overflow (CWE-120)

ADP Enrichment

CVE Program Container

Additional References

References