CVE-2021-46902

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Feb 4, 2024

Updated: Feb 13, 2024

Summary

CVE-2021-46902 is a vulnerability affecting the LTOS-Web-Interface in Meinberg LANTIME-Firmware versions before 6.24.029 MBGID-9343 and 7 before 7.04.008 MBGID-6303. The issue lies in the way path validation is handled, enabling an admin to bypass expected access controls and read or delete files unauthorizedly. This can lead to potential data loss or unintended system modifications.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uZm5NC
https://www.cve.org/CVERecord?id=CVE-2021-46902
https://nvd.nist.gov/vuln/detail/CVE-2021-46902

Back to Vulnerability Database

CVE-2021-46902

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations