Lucene search
MitreCVELIST:CVE-2021-36356HistoryAug 31, 2021 - 3:45 a.m.
CVE-2021-36356
2021-08-3103:45:11
mitre
www.cve.org
4
kramer viaware
remote code execution
ajaxpages/writebrowsefilepathajax.php
cve-2021-36356
KRAMER VIAware through August 2021 allows remote attackers to execute arbitrary code because ajaxPages/writeBrowseFilePathAjax.php accepts arbitrary executable pathnames (even though browseSystemFiles.php is no longer reachable via the GUI). NOTE: this issue exists because of an incomplete fix for CVE-2019-17124.
Related
cve
cve
CVE-2021-36356
2021-08-31 04:15:10
CVE-2019-17124
2019-10-09 16:15:15
attackerkb
attackerkb
CVE-2021-36356
2021-08-31 00:00:00
prion
prion
Information disclosure
2021-08-31 04:15:00
Improper access control
2019-10-09 16:15:00
nvd
nvd
CVE-2021-36356
2021-08-31 04:15:10
CVE-2019-17124
2019-10-09 16:15:15
exploitdb
exploitdb
Kramer VIAware 2.5.0719.1034 - Remote Code Execution (RCE)
2022-03-30 00:00:00
Kramer VIAware - Remote Code Execution (RCE) (Root)
2022-04-07 00:00:00
cvelist
cvelist
CVE-2019-17124
2019-10-09 15:44:55
packetstorm
packetstorm
Kramer VIAware 2.5.0719.1034 Remote Code Execution
2022-03-30 00:00:00
Kramer VIAware Remote Code Execution
2022-04-07 00:00:00
githubexploit
githubexploit
Exploit for Incorrect Default Permissions in Kramerav Viaware
2019-10-09 04:10:25
Exploit for Improper Privilege Management in Kramerav Viaware
2022-06-02 02:19:49
zdt
zdt
Kramer VIAware 2.5.0719.1034 - Remote Code Execution Exploit
2022-03-30 00:00:00
Kramer VIAware - Remote Code Execution Exploit
2022-04-07 00:00:00
nuclei
nuclei
Kramer VIAware - Remote Code Execution
2022-04-30 10:22:52
thn
thn