Improper access control in acmailer and acmailer DB - CVE-2021-20617
Published: January 14, 2021 / Updated: January 18, 2021
acmailer
acmailer DB
Detailed vulnerability description
The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper access restrictions. A remote attacker can bypass implemented security restrictions and gain unauthorized access to the application, leading to arbitrary OS command injection and privilege escalation.