Unauthenticated File Retrieval Vulnerability in Elcomplus SmartPTT SCADA Server
CVE-2021-43938 · CRITICAL Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Elcomplus SmartPTT SCADA Server is vulnerable to an unauthenticated user can request various files from the server without any authentication or authorization.
Learn more about our Cis Benchmark Audit For Server Software.