Unrated severityNVD Advisory· Published Dec 24, 2021· Updated Aug 3, 2024
CVE-2021-20874
CVE-2021-20874
Description
Incorrect permission assignment for critical resource vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows a remote unauthenticated attacker to access arbitrary files on the server and obtain sensitive information via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <=5.1.1
- Range: <=5.1.1
- Japan Total System Co.,Ltd./GroupSession Free edition, GroupSession byCloud, GroupSession ZIONv5Range: GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier
Patches
Vulnerability mechanics
References
2- groupsession.jp/info/info-news/security20211220mitrex_refsource_MISC
- jvn.jp/en/jp/JVN79798166/index.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.