Arbitrary File Upload Vulnerability in Micro Focus GroupWise Administration Console

Arbitrary File Upload Vulnerability in Micro Focus GroupWise Administration Console

CVE-2018-12468 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

A vulnerability in the administration console of Micro Focus GroupWise prior to version 18.0.2 may allow a remote attacker authenticated as an administrator to upload files to an arbitrary path on the server. In certain circumstances this could result in remote code execution.

Learn more about our Cis Benchmark Audit For Server Software.