File Upload Vulnerability in FatPipe WARP, IPVPN, and MPVPN Software (FPSA006)

File Upload Vulnerability in FatPipe WARP, IPVPN, and MPVPN Software (FPSA006)

CVE-2021-27860 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.

Learn more about our Web App Pen Testing.