Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2021-27860

FatPipe | WARP, IPVPN, and MPVPN softwareAdded 2022-01-10Remediation Deadline 2022-01-24

FatPipe WARP, IPVPN, and MPVPN Configuration Upload exploit

A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software allows a remote, unauthenticated attacker to upload a file to any location on the filesystem.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-434

References