CVE-2021-43936

Summary

The software allows the attacker to upload or transfer files of dangerous types to the WebHMI portal, that may be automatically processed within the product's environment or lead to arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
Distributed Data SystemsWebHMI4.1 < 4.1affected

Weaknesses

  • Unrestricted Upload of File with Dangerous Type

Workarounds

Distributed Data Systems recommends upgrading the platform software to the latest release, Version 4.1

ADP Enrichment

CVE Program Container

Additional References

References