CVE-2021-27489

Summary

ZOLL Defibrillator Dashboard, v prior to 2.2, The web application allows a non-administrative user to upload a malicious file. This file could allow an attacker to remotely execute arbitrary commands.

Affected Software

VendorProductVersion RangeStatus
n/aZOLL Defibrillator DashboardAll versions prior to 2.2affected

Weaknesses

  • CWE-434: UNRESTRICTED UPLOAD OF FILE WITH DANGEROUS TYPE CWE-434

ADP Enrichment

CVE Program Container

Additional References

References