High severity7.2NVD Advisory· Published Mar 30, 2022· Updated Jun 17, 2026
CVE-2021-33523
CVE-2021-33523
Description
MashZone NextGen through 10.7 GA allows a remote authenticated user, with access to the admin console, to upload a new JDBC driver that can execute arbitrary commands on the underlying host. This occurs in com.idsscheer.ppmmashup.business.jdbc.DriverUploadController.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- idsscheer/MashZone NextGendescription
- Range: <=10.7 GA
Patches
Vulnerability mechanics
References
2- github.com/blackarrowsec/advisories/tree/master/2021/CVE-2021-33523nvdThird Party Advisory
- www.softwareag.com/corporate/products/az/mashzone_nextgen/defaultnvdProductVendor Advisory
News mentions
0No linked articles in our index yet.