CVE-2021-28042
N/A
N/A
Summary
Deutsche Post Mailoptimizer 4.3 before 2020-11-09 allows Directory Traversal via a crafted ZIP archive to the Upload feature or the MO Connect component. This can lead to remote code execution.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://herolab.usd.de/security-advisories/usd-2020-0028/
- https://www.deutschepost.de/de/m/mailoptimizer.html
References
- https://herolab.usd.de/security-advisories/usd-2020-0028/
- https://www.deutschepost.de/de/m/mailoptimizer.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.