VYPR
Unrated severityCISA KEVNVD Advisory· Published Dec 8, 2021· Updated Oct 21, 2025

Arbitrary file upload vulnerability in FatPipe software

CVE-2021-27860

Description

A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Fatpipe/MPVPNllm-create
    Range: <10.1.2r60p92, <10.2.2r44p1
  • Fatpipe/Ipvpnllm-fuzzy2 versions
    <10.1.2r60p92, <10.2.2r44p1+ 1 more
    • (no CPE)range: <10.1.2r60p92, <10.2.2r44p1
    • (no CPE)range: 10.1
  • Warpdotdev/Warpllm-fuzzy
    Range: <10.1.2r60p92, <10.2.2r44p1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.