CVE-2021-41315
N/A
N/A
Summary
The Device42 Remote Collector before 17.05.01 does not sanitize user input in its SNMP Connectivity utility. This allows an authenticated attacker (with access to the console application) to execute arbitrary OS commands and escalate privileges.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://docs.device42.com/auto-discovery/remote-collector-rc/
- https://blog.device42.com/2021/09/critical-fixes-in-17-05-01/
References
- https://docs.device42.com/auto-discovery/remote-collector-rc/
- https://blog.device42.com/2021/09/critical-fixes-in-17-05-01/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.