Security Advisory

CVE-2021-33523

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-30 22:06:40

Last updated 2024-08-03 23:50:43

Assigner mitre

State PUBLISHED

Description

MashZone NextGen through 10.7 GA allows a remote authenticated user, with access to the admin console, to upload a new JDBC driver that can execute arbitrary commands on the underlying host. This occurs in com.idsscheer.ppmmashup.business.jdbc.DriverUploadController.

← Browse all CVEs View on cve.org ↗