In Code42 Enterprise 6.7.5 and earlier, 6.8.4 through 6.8.8, and 7.0.0 a vulnerability has been identified that may allow arbitrary files to be uploaded to Code42 servers and executed. This vulnerability could allow an attacker to create directories and save files on Code42 servers, which could potentially lead to code execution.
References
Link | Resource |
---|---|
https://code42.com/r/support/CVE-2019-15131 | Vendor Advisory |
https://support.code42.com/Terms_and_conditions/Code42_customer_support_resources/Code42_security_advisories | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2019-09-17 12:15
Updated : 2024-02-28 17:08
NVD link : CVE-2019-15131
Mitre link : CVE-2019-15131
CVE.ORG link : CVE-2019-15131
JSON object : View
Products Affected
code42
- code42
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type