Security Advisory

CVE-2021-26597

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-03-25 18:56:45
Last updated 2024-08-03 20:26:25
Assigner mitre
State PUBLISHED

Description

An issue was discovered in Nokia NetAct 18A. A remote user, authenticated to the NOKIA NetAct Web Page, can visit the Site Configuration Tool web site section and arbitrarily upload potentially dangerous files without restrictions via the /netact/sct dir parameter in conjunction with the operation=upload value.