CVE-2021-27860

Confirmed PUBLISHED

Arbitrary file upload vulnerability in FatPipe software

FatPipe · WARP, IPVPN, MPVPN
Exploited in the wild

Recommended Action

Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.

Confidence
Confirmed
Exploitation Status
Exploited in the wild
Observed in Sensors
No
Attempts (30d)
Unique Attacker IPs
CISA KEV
In CISA KEV
CVSS / EPSS
9.8 Critical

At a Glance

A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.

cisa
CVE Published
Dec 08, 2021
Exploitation Reported
Jan 10, 2022
CVSS
9.8 Critical
EPSS
Remote Low complexity No user interaction Unauthenticated

Affected Versions

Vendor Product Version Status
FatPipe
WARP

10.1 to < 10.1.2r60p92

Affected
FatPipe
WARP

10.2 to < 10.2.2r44p1

Affected
FatPipe
IPVPN

10.1 to < 10.1.2r60p92

Affected
FatPipe
IPVPN

10.2 to < 10.2.2r44p1

Affected
FatPipe
MPVPN

10.1 to < 10.1.2r60p92

Affected
FatPipe
MPVPN

10.2 to < 10.2.2r44p1

Affected

CVE References

Recommended Actions

  • Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.