The FileUploadController servlet in EMC Connectrix Manager Converged Network Edition (CMCNE) prior to 12.1.5 does not properly restrict additions to the Connectrix Manager repository, which allows remote malicious users to obtain sensitive information by importing a crafted firmware file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
emc connectrix manager |