CVE-2021-41290 – ECOA BAS controller suffers from an arbitrary file write and path traversal vulnerability. …

30 September 2021

Vuln ID: CVE-2021-41290

Published: 2021-09-30 11:15:07Z

Description: ECOA BAS controller suffers from an arbitrary file write and path traversal vulnerability. Using the POST parameters, unauthenticated attackers can remotely set arbitrary values for location and content type and gain the possibility to execute arbitrary code on the affected device.

Source: NVD.NIST.GOV

Date:

30 September 2021

Categorie(s):

NVD

Tag(s):

NVD

Hackers Target Middle East Governments with Evasive “CR4T” Backdoor19 April 2024
6 Surprising Ways Hackers Can Exploit Your Smart Home Devices19 April 2024
Protobom: Open-source software supply chain tool19 April 2024
The key pillars of domain security19 April 2024
Fraudsters abused Apple Stores’ third-party pickup policy to phish for profits19 April 2024