Medium severity4.9NVD Advisory· Published Dec 7, 2021· Updated Jun 17, 2026
CVE-2021-40095
CVE-2021-40095
Description
An issue was discovered in SquaredUp for SCOM 5.2.1.6654. The Download Log feature in System / Maintenance was susceptible to a local file inclusion vulnerability (when processing remote input in the log files downloaded by an authenticated administrator user), leading to the ability to read arbitrary files on the server filesystems.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- SquaredUp/SquaredUp for SCOMdescription
Patches
Vulnerability mechanics
References
2- support.squaredup.comnvdVendor Advisory
- support.squaredup.com/hc/en-us/articles/4410635419153-CVE-2021-40095-Reading-arbitrary-filesnvdVendor Advisory
News mentions
0No linked articles in our index yet.