CVE-2021-26619
BigFileAgent arbitrary file Deleting vulnerability
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.1EPSS 0.9%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
18 feb 2022Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
An path traversal vulnerability leading to delete arbitrary files was discovered in BigFileAgent. Remote attackers can use this vulnerability to delete arbitrary files of unspecified number of users.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H
Productos afectados
Bluetree Co., Ltd · BigFileAgent