CVE-2021-27103 | Cybersecurity Alerts | Nexus IT Services, LLC

← Back to Cybersecurity Alerts

CVE-2021-27103

Accellion | FTAAdded 2021-11-03Remediation Deadline 2021-11-17Active Ransomware Campaign

Accellion FTA Server-Side Request Forgery (SSRF) Vulnerability

Accellion FTA contains a server-side request forgery (SSRF) vulnerability exploited via a crafted POST request to wmProgressstat.html.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-918

References

https://nvd.nist.gov/vuln/detail/CVE-2021-27103