Description

Afian FileRun 2021.03.26 allows Remote Code Execution (by administrators) via the Check Path value for the ffmpeg binary.

Related CPE's

a

afian

filerun

Vulnerable

References

http://blog.filerun.com

Product

https://syntegris-sec.github.io/filerun-advisory

ExploitThird Party Advisory

http://blog.filerun.com

Product

https://syntegris-sec.github.io/filerun-advisory

ExploitThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-74

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

7.2 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-10-05T10:15:07.753Z

4 years ago

Last modified

2024-11-21T05:12:24.100Z

1 year ago