Security Advisory

CVE-2021-40376

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-07 03:41:46

Last updated 2024-08-04 02:44:09

Assigner mitre

State PUBLISHED

Description

otris Update Manager 1.2.1.0 allows local users to achieve SYSTEM access via unauthenticated calls to exposed interfaces over a .NET named pipe. A remote attack may be possible as well, by leveraging WsHTTPBinding for HTTP traffic on TCP port 9000.

← Browse all CVEs View on cve.org ↗