Vulnerability in Unify Ewave_servletexec

CVE-2000-1024

eWave ServletExec 3.0C and earlier does not restrict access to the UploadServlet Java/JSP servlet, which allows remote attackers to upload files and execute arbitrary commands.

EPSS: 0.051 (91.3th percentile) — read the EPSS interpretation.

Affected products

References