Unauthenticated File Retrieval Vulnerability in Elcomplus SmartPTT SCADA Server

Unauthenticated File Retrieval Vulnerability in Elcomplus SmartPTT SCADA Server

CVE-2021-43938 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Elcomplus SmartPTT SCADA Server is vulnerable to an unauthenticated user can request various files from the server without any authentication or authorization.

Learn more about our Cis Benchmark Audit For Server Software.