Lucene search
PRIOn knowledge basePRION:CVE-2021-39271HistoryAug 30, 2021 - 5:15 a.m.
Design/Logic Flaw
2021-08-3005:15:00
PRIOn knowledge base
www.prio-n.com
1
OrbiTeam BSCW Classic before 7.4.3 allows authenticated remote code execution (RCE) during archive extraction via attacker-supplied Python code in the class attribute of a .bscw file. This is fixed in 5.0.12, 5.1.10, 5.2.4, 7.3.3, and 7.4.3.
| CPE | Name | Operator | Version |
|---|---|---|---|
| bscw_classic | ge | 7.4.0 | |
| bscw_classic | lt | 7.4.3 | |
| bscw_classic | ge | 7.3.0 | |
| bscw_classic | lt | 7.3.3 | |
| bscw_classic | ge | 5.2.0 | |
| bscw_classic | lt | 5.2.4 | |
| bscw_classic | ge | 5.1.0 | |
| bscw_classic | lt | 5.1.10 | |
| bscw_classic | lt | 5.0.12 |
Related
packetstorm
packetstorm
BSCW Server Remote Code Execution
2021-08-31 00:00:00
nvd
nvd
CVE-2021-39271
2021-08-30 05:15:07
cve
cve
CVE-2021-39271
2021-08-30 05:15:07
zdt
zdt
BSCW Server Remote Code Execution Vulnerability
2021-08-31 00:00:00
cvelist
cvelist
CVE-2021-39271
2021-08-30 04:58:25