CVE-2021-20874

Incorrect permission assignment for critical resource vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows a remote unauthenticated attacker to access arbitrary files on the server and obtain sensitive information via unspecified vectors.
Configurations

Configuration 1

cpe:2.3:a:groupsession:groupsession:*:*:*:*:zion:*:*:*
cpe:2.3:a:groupsession:groupsession:*:*:*:*:cloud:*:*:*
cpe:2.3:a:groupsession:groupsession:*:*:*:*:free:*:*:*

Information

Published : 2021-12-24 07:15

Updated : 2022-01-10 01:30


NVD link : CVE-2021-20874

Mitre link : CVE-2021-20874

Products Affected
No products.
CWE