|
|
|||
| Rule General Information |
|---|
| Release Date: | 2024-04-02 | |
| Rule Name: | Glodon LinkWorks GWGDWebService.asmx Arbitrary File Upload Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | LinkWorks is a BIM (Building Information Modeling) collaborative platform developed by Glodon. Due to improper settings at the LinkWorks GWGDWebService.asmx interface of Guanglian Da, unauthorized attackers can upload malicious files through this vulnerability, which may lead to issues such as malicious code execution, identity forgery, backdoor implantation, and sensitive data leakage. | |
| Impact: | Attackers can upload viruses, Trojans, WebShell, other malicious scripts or pictures containing scripts to the server, and attackers can use these files for subsequent attacks. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |