Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

WARP, IPVPN, and MPVPN software

Source -

CISA

CNA CVEs -

0

ADP CVEs -

0

CISA CVEs -

1

NVD CVEs -

0
Related CVEsRelated VendorsRelated AssignersReports
1Vulnerabilities found
CVE-2021-27860
Assigner-CERT/CC
ShareView Details
Assigner-CERT/CC
CVSS Score-9.8||CRITICAL
EPSS-42.71% / 97.38%
||
7 Day CHG+0.59%
Published-08 Dec, 2021 | 16:15
Updated-30 Jul, 2025 | 01:37
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Known KEV||Action Due Date - 2022-01-24||Apply updates per vendor instructions.
Arbitrary file upload vulnerability in FatPipe software

A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.

Action-Not Available
Vendor-fatpipeincFatPipeFatPipe
Product-ipvpnwarpmpvpn_firmwarempvpnipvpn_firmwarewarp_firmwareMPVPNWARPIPVPNWARP, IPVPN, and MPVPN software
CWE ID-CWE-434
Unrestricted Upload of File with Dangerous Type