CVE-2021-26639
8.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Summary
This vulnerability is caused by the lack of validation of input values for specific functions if WISA Smart Wing CMS. Remote attackers can use this vulnerability to leak all files in the server without logging in system.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| WISA corp. | Smart Wing CMS | unspecified < r18715.20211229 | affected |
Weaknesses
- CWE-494: CWE-494 Download of Code Without Integrity Check
- CWE-20: CWE-20 Improper Input Validation
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.