Arbitrary File Upload Vulnerability in Seiko SkyBridge MB-A100/A110 v4.2.0 and Below

Arbitrary File Upload Vulnerability in Seiko SkyBridge MB-A100/A110 v4.2.0 and Below

CVE-2022-36557 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Seiko SkyBridge MB-A100/A110 v4.2.0 and below was discovered to contain an arbitrary file upload vulnerability via the restore backup function. This vulnerability allows attackers to execute arbitrary code via a crafted html file.

Learn more about our Web Application Penetration Testing UK.