CVE-2021-38485

Summary

The affected product is vulnerable to improper input validation in the restore file. This enables an attacker to provide malicious config files to replace any file on disk.

Affected Software

VendorProductVersion RangeStatus
EmersonWirelessHART Gateway1410 <= 4.7.94affected
EmersonWirelessHART Gateway1410D <= 4.7.94affected
EmersonWirelessHART Gateway1420 <= 4.7.94affected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

References