Cyberdigm Product Security Advisory

Overview

 

Cyberdigm has released an update to fix vulnerabilities in their products. Users of affected versions are advised to update to the latest version.

 

Affected Products

 

ECM/cloudium all versions

 

Resolved Vulnerabilities

 

Relative Path Overwrite (RPO) vulnerability that allows arbitrary commands via certain parameters when uploading files

 

Vulnerability remediation

 

※ Requires a manufacturer request before applying updates and patches.

 

Referenced Sites

[1] Cyberdigm Product Security Action Recommendations

https://www.krcert.or.kr/kr/bbs/view.do?searchCnd=&bbsId=B0000133&searchWrd=&menuNo=205020&pageIndex=1&categoryCode=&nttId=71508