Unauthenticated Arbitrary File Deletion Vulnerability in Emerson XWEB 300D EVO 3.0.7--3ee403
CVE-2021-45427 · CRITICAL Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Emerson XWEB 300D EVO 3.0.7--3ee403 is affected by: unauthenticated arbitrary file deletion due to path traversal. An attacker can browse and delete files without any authentication due to incorrect access control and directory traversal.
Learn more about our Web App Pen Testing.