CVE-2024-3786 Information

Description

Vulnerability in WBSAirback 21.02.04 which involves improper neutralisation of Server-Side Includes (SSI) through Device Synchronizations (/admin/DeviceReplication). Exploitation of this vulnerability could allow a remote user to execute arbitrary code.

Reference

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-wbsairback-white-bear-solutions