Arbitrary File Placement Vulnerability in GE Communicator

Arbitrary File Placement Vulnerability in GE Communicator

CVE-2019-6546 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

GE Communicator, all versions prior to 4.0.517, allows an attacker to place malicious files within the working directory of the program, which may allow an attacker to manipulate widgets and UI elements.

Learn more about our Web Application Penetration Testing UK.