DEV Community

Cover image for CVE-2021-27104: Accellion FTA OS Command Injection Vulnerability
Freedom Coder
Freedom Coder

Posted on • Edited on • Originally published at scyscan.com

CVE-2021-27104: Accellion FTA OS Command Injection Vulnerability

#accellion #fta #cybersecurity #vulnerability

CVE ID:

CVE-2021-27104

Vulnerability Name

Accellion FTA OS Command Injection Vulnerability

  • Project: Accellion
  • Product: FTA

Date:

  • Date Added: 2021-11-03
  • Due Date: 2021-11-17

Description:

Accellion FTA contains an OS command injection vulnerability exploited via a crafted POST request to various admin endpoints.

Known To Be Used in Ransomware Campaigns?

Known

Action:

Apply updates per vendor instructions.

Additional Notes:

https://nvd.nist.gov/vuln/detail/CVE-2021-27104

More CVEs:

Common Vulnerabilities & Exposures (CVE) List

Top comments (1)

Some comments may only be visible to logged-in visitors. Sign in to view all comments.