CVE-2021-27860 - FatPipe WARP, IPVPN, and MPVPN Configuration Upload exploit
Project:FatPipe
Product:WARP, IPVPN, and MPVPN software
Date Added:2022-01-10Due Date:2022-01-24
Vulnerability Name
FatPipe WARP, IPVPN, and MPVPN Configuration Upload exploit
Description
A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software allows a remote, unauthenticated attacker to upload a file to any location on the filesystem.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2021-27860