CVE-2021-43358

Publication date

2021-12-01 02:00:22

Family

twcert

State

PUBLISHED

Description

Sunnet eHRD has inadequate filtering for special characters in URLs, which allows a remote attacker to perform path traversal attacks without authentication, access restricted paths and download system files.