CVE-2021-36121

July 15, 2021

An issue was discovered in Echo ShareCare 8.15.5. The file-upload feature in Access/DownloadFeed_Mnt/FileUpload_Upd.cfm is susceptible to an unrestricted upload vulnerability via the name1 parameter, when processing remote input from an authenticated user, leading to the ability for arbitrary files to be written to arbitrary filesystem locations via ../ Directory Traversal on the Z: drive (a hard-coded drive letter where ShareCare application files reside) and remote code execution as the ShareCare service user (NT AUTHORITY\SYSTEM).

Summary:

An issue was discovered in Echo ShareCare 8.15.5. The file-upload feature in Access/DownloadFeed_Mnt/FileUpload_Upd.cfm is susceptible to an unrestricted upload vulnerability via the name1 parameter, when processing remote input from an authenticated user, leading to the ability for arbitrary files to be written to arbitrary filesystem locations via ../ Directory Traversal on the Z: drive (a hard-coded drive letter where ShareCare application files reside) and remote code execution as the ShareCare service user (NT AUTHORITY\SYSTEM).

Reference Links(if available):

  • https://github.com/atredispartners/advisories/blob/master/ATREDIS-2021-0001.md

  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • You may have missed

    news

    Advanced Email Attacks Target Manufacturing Sector: Rise of Phishing and BEC

    November 23, 2024
    news

    Ransomware Groups Driving 40% of Cyber-Attacks in 2024: Key Insights

    November 23, 2024
    news

    MITRE Reveals Top 25 Most Critical Software Flaws of 2024

    November 23, 2024
    news

    Microsoft Disrupts Phishing Operations by Seizing 240 Fraudulent Websites

    November 23, 2024
    news

    Black Friday Spam Emails: 77% Identified as Scams in 2024

    November 23, 2024