Unrated severityNVD Advisory· Published Sep 30, 2021· Updated Sep 16, 2024
ECOA BAS controller - Path Traversal-1
CVE-2021-41290
Description
ECOA BAS controller suffers from an arbitrary file write and path traversal vulnerability. Using the POST parameters, unauthenticated attackers can remotely set arbitrary values for location and content type and gain the possibility to execute arbitrary code on the affected device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: next of 0
Patches
Vulnerability mechanics
References
1- www.twcert.org.tw/tw/cp-132-5126-ca315-1.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.