CVE-2021-26622

Publication date

2022-03-25 18:02:39

Family

krcert

State

PUBLISHED

Description

An remote code execution vulnerability due to SSTI vulnerability and insufficient file name parameter validation was discovered in Genian NAC. Remote attackers are able to execute arbitrary malicious code with SYSTEM privileges on all connected nodes in NAC through this vulnerability.