Vulnerabilities

CVE-2019-7669

by Fred · 01/07/2019

Prima Systems FlexAir, Versions 2.3.38 and prior. Improper validation of file extensions when uploading files could allow a remote authenticated attacker to upload and execute malicious applications within the application’s web root with root privileges.

Date published : 2019-07-01

http://packetstormsecurity.com/files/155270/FlexAir-Access-Control-2.3.38-Command-Injection.html

https://applied-risk.com/labs/advisories

Similar

Tags: Cybersecurity Alert