CVE-2021-31769
Last modified
CVE-2021-31769 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. MyQ Server in MyQ X Smart before 8.2 allows remote code execution by unprivileged users because administrative session data can be read in the %PROGRAMFILES%\MyQ\PHP\Sessions directory. The "Select server file" feature is only intended for administrators but actually does not require authorization. EPSS estimates a 4.06% chance of exploitation in the next 30 days.
Description
MyQ Server in MyQ X Smart before 8.2 allows remote code execution by unprivileged users because administrative session data can be read in the %PROGRAMFILES%\MyQ\PHP\Sessions directory. The "Select server file" feature is only intended for administrators but actually does not require authorization. An attacker can inject arbitrary OS commands (such as commands to create new .php files) via the Task Scheduler component.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Myq-Solution | Myq Server | < 8.2 |
References
- https://gist.github.com/bc0d3/6d55866a78f66569383241406e18794fExploit, Third Party Advisory
- https://gist.github.com/bc0d3/6d55866a78f66569383241406e18794fExploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-31769?
How severe is CVE-2021-31769?
How do I fix CVE-2021-31769?
Are you affected by CVE-2021-31769?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST