Contact
Search Get started

Upload of malicious files to publicly shared folders

Jun 21, 2021

  • Risk: medium
  • CVSS v3 Base Score: 5.4
  • CVSS v3 Vector: AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
  • CWE ID: CWE-459
  • CWE Name: Incomplete Cleanup
  • CVE: CVE-2021-33828

Description

It was possible to upload malicious files to a public share. The malicious files were detected but ended up in a state where they were not deleted.

Affected

  • files_antivirus < v1.0.0

Action taken

Fix the deletion of infected files