Unrestricted File Upload Causing Remote Code Execution: Orion Platform 2020.2.6
CVE-2021-35244
6.8MEDIUM
Summary
The "Log alert to a file" action within action management enables any Orion Platform user with Orion alert management rights to write to any file. An attacker with Orion alert management rights could use this vulnerability to perform an unrestricted file upload causing a remote code execution.
Affected Version(s)
Orion Platform Windows 2020.2.6 HF 2 and previous versions < 2020.2.6 HF 3
References
CVSS V3.1
Score:
6.8
Severity:
MEDIUM
Confidentiality:
High
Integrity:
Low
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
High
Privileges Required:
High
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved
Credit
dibs working with Trend Micro's Zero Day Initiative.