Unauthenticated Arbitrary File Deletion Vulnerability in Emerson XWEB 300D EVO 3.0.7--3ee403

Unauthenticated Arbitrary File Deletion Vulnerability in Emerson XWEB 300D EVO 3.0.7--3ee403

CVE-2021-45427 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Emerson XWEB 300D EVO 3.0.7--3ee403 is affected by: unauthenticated arbitrary file deletion due to path traversal. An attacker can browse and delete files without any authentication due to incorrect access control and directory traversal.

Learn more about our Web App Pen Testing.