CVE-2021-26619

An path traversal vulnerability leading to delete arbitrary files was discovered in BigFileAgent. Remote attackers can use this vulnerability to delete arbitrary files of unspecified number of users.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:bigfile:bigfileagent:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:56

Type Values Removed Values Added
References () https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36457 - Third Party Advisory () https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36457 - Third Party Advisory
CVSS v2 : 6.4
v3 : 9.1
v2 : 6.4
v3 : 7.1

28 Feb 2022, 20:54

Type Values Removed Values Added
References (MISC) https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36457 - (MISC) https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36457 - Third Party Advisory
CPE cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:a:bigfile:bigfileagent:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : 6.4
v3 : 9.1
CWE CWE-22

18 Feb 2022, 18:33

Type Values Removed Values Added
New CVE

Information

Published : 2022-02-18 18:15

Updated : 2024-11-21 05:56


NVD link : CVE-2021-26619

Mitre link : CVE-2021-26619

CVE.ORG link : CVE-2021-26619


JSON object : View

Products Affected

bigfile

  • bigfileagent

microsoft

  • windows
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')