Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2021-27860
Analyzed
Known KEV
More InfoOfficial Page
Source-cret@cert.org
View Known Exploited Vulnerability (KEV) details
Published At-08 Dec, 2021 | 17:15
Updated At-02 Apr, 2025 | 20:22

A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
2022-01-102022-01-24FatPipe WARP, IPVPN, and MPVPN Configuration Upload exploitApply updates per vendor instructions.
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.19.8CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary3.18.8HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Primary2.09.3HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
CPE Matches
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>5.2.0
cpe:2.3:o:fatpipeinc:ipvpn_firmware:5.2.0:r34:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>6.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:6.1.2:r70p26:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>6.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:6.1.2:r70p45-m:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>6.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:6.1.2:r70p75-m:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>7.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:7.1.2:r39:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r129:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r144:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r150:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r156:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r161p12:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r161p16:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r161p17:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r161p2:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r161p20:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r161p26:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r161p3:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r164:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r164p4:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r164p5:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r165:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r180p2:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:9.1.2:r185:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.1.2:r60p10:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.1.2:r60p13:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.1.2:r60p32:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.1.2:r60p35:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.1.2:r60p45:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.1.2:r60p55:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.1.2:r60p58:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.1.2:r60p58s1:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.1.2:r60p65:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.1.2:r60p71:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.1.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.1.2:r60p82:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.2.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.2.2:r10:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.2.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.2.2:r25:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn_firmware>>10.2.2
cpe:2.3:o:fatpipeinc:ipvpn_firmware:10.2.2:r38:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>ipvpn>>-
cpe:2.3:h:fatpipeinc:ipvpn:-:*:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>5.2.0
cpe:2.3:o:fatpipeinc:warp_firmware:5.2.0:r34:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>6.1.2
cpe:2.3:o:fatpipeinc:warp_firmware:6.1.2:r70p26:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>6.1.2
cpe:2.3:o:fatpipeinc:warp_firmware:6.1.2:r70p45-m:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>6.1.2
cpe:2.3:o:fatpipeinc:warp_firmware:6.1.2:r70p75-m:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>7.1.2
cpe:2.3:o:fatpipeinc:warp_firmware:7.1.2:r39:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:warp_firmware:9.1.2:r129:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:warp_firmware:9.1.2:r144:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:warp_firmware:9.1.2:r150:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:warp_firmware:9.1.2:r156:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:warp_firmware:9.1.2:r161p12:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:warp_firmware:9.1.2:r161p16:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:warp_firmware:9.1.2:r161p17:*:*:*:*:*:*
fatpipeinc
fatpipeinc
>>warp_firmware>>9.1.2
cpe:2.3:o:fatpipeinc:warp_firmware:9.1.2:r161p2:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-434Primarynvd@nist.gov
CWE-434Secondary134c704f-9b21-4f2e-91b3-4a467353bcc0
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://www.fatpipeinc.com/support/cve-list.phpcret@cert.org
Vendor Advisory
https://www.ic3.gov/Media/News/2021/211117-2.pdfcret@cert.org
Exploit
Mitigation
Third Party Advisory
US Government Resource
https://www.fatpipeinc.com/support/cve-list.phpaf854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
https://www.ic3.gov/Media/News/2021/211117-2.pdfaf854a3a-2127-422b-91ae-364da2661108
Exploit
Mitigation
Third Party Advisory
US Government Resource
Change History
0Changes found
Details not found