Security Advisory

CVE-2021-21907

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-12-22 18:06:49

Last updated 2024-08-03 18:30:22

Assigner talos

State PUBLISHED

Description

A directory traversal vulnerability exists in the CMA CLI getenv command functionality of Garrett Metal Detectors’ iC Module CMA Version 5.0. A specially-crafted command line argument can lead to local file inclusion. An attacker can provide malicious input to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗