CVE List

CVE-2021-31540

Critical 7.1

Wowza Streaming Engine through 4.8.5 (in a default installation) has incorrect file permissions of configuration files in the conf/ directory. A regular local user is able to read and write to all the configuration files, e.g., modify the application server configuration.

Published April 23, 2021.

Affected software

Wowza Streaming Engine

Reference links

Sign Up for Alerts