Unrated severityNVD Advisory· Published Feb 14, 2022· Updated Aug 4, 2024
CVE-2021-45420
CVE-2021-45420
Description
Emerson Dixell XWEB-500 products are affected by arbitrary file write vulnerability in /cgi-bin/logo_extra_upload.cgi, /cgi-bin/cal_save.cgi, and /cgi-bin/lo_utils.cgi. An attacker will be able to write any file on the target system without any kind of authentication mechanism, and this can lead to denial of service and potentially remote code execution. Note: the product has not been supported since 2018 and should be removed or replaced
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Emerson Dixell/XWEB-500description
Patches
Vulnerability mechanics
References
3- dixell.commitrex_refsource_MISC
- emerson.commitrex_refsource_MISC
- www.swascan.com/emersonmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.