CVE-2021-27513
Presentation
It is possible to add files that will allow executing arbitrary commands for an EON user with sufficient rights to use the ITSM module. The ‘File’ field, when adding a configuration, does not check if the file format is the correct one.
Exploit
Impacted Version(s)
EON 5.3-0+
Fixed Version(s)
Fix
Download latest EON fixed version.
Relevant link
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27513