First published: Tue May 11 2021(Updated: )
** UNSUPPORTED WHEN ASSIGNED ** An issue was discovered on Zebra (formerly Motorola Solutions) Fixed RFID Reader FX9500 devices. An unauthenticated attacker can upload arbitrary files to the filesystem that can then be accessed through the web interface. This can lead to information disclosure and code execution. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Zebra Fx9500 Firmware | ||
Zebra Fx9500 | ||
All of | ||
Zebra Fx9500 Firmware | ||
Zebra Fx9500 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-32089 is an issue discovered on Zebra (formerly Motorola Solutions) Fixed RFID Reader FX9500 devices, which allows an unauthenticated attacker to upload arbitrary files to the filesystem that can then be accessed through the web interface, potentially leading to information disclosure and compromise.
CVE-2021-32089 has a severity rating of critical with a CVSS score of 9.8.
The Zebra Fx9500 Firmware is affected by CVE-2021-32089.
An unauthenticated attacker can exploit CVE-2021-32089 by uploading arbitrary files to the filesystem through the web interface.
Yes, you can find more information about CVE-2021-32089 at the following links: [Securifera Advisory](https://www.securifera.com/advisories/cve-2021-32089/) and [Zebra Support and Downloads](https://www.zebra.com/us/en/support-downloads/rfid/rfid-readers/fx9500.html).