Unvalidated File Upload Vulnerability in IBM Planning Analytics Workspace 2.0

Unvalidated File Upload Vulnerability in IBM Planning Analytics Workspace 2.0

CVE-2021-39040 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

IBM Planning Analytics Workspace 2.0 could be vulnerable to malicious file upload by not validating the file types or sizes. Attackers can make use of this weakness and upload malicious executable files into the system and it can be sent to victim for performing further attacks. IBM X-Force ID: 214025.

Learn more about our Cis Benchmark Audit For Google Workspace.