Security Advisory

CVE-2021-35963

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-07-19 11:55:38

Last updated 2024-09-17 01:41:56

Assigner twcert

State PUBLISHED

Description

The specific parameter of upload function of the Orca HCM digital learning platform does not filter file format, which allows remote unauthenticated attackers to upload files containing malicious script to execute RCE attacks.

← Browse all CVEs View on cve.org ↗