Rejetto HTTP File Server Remote Code Execution

Rejetto HTTP File Server contains an improper neutralization of special elements used in a template engine vulnerability. This allows a remote, unauthenticated attacker to execute commands on the affected system by sending a specially crafted HTTP request. This type of vulnerability, known as command injection or remote code execution, can have severe consequences, including:

Unauthorized Access
System Compromise
Data Breach
Service Disruption
Spread of Malware

It is crucial to address this vulnerability immediately.

Armis identified this risk 13 days earlier for our customers:

CISA KEV Date: July 9, 2024
Armis Labs: June 26, 2024

Armis Platform

Extensions

Cybersecurity Insights from Experts and Billions of Assets

Industries

Public Sector

Securing the Automotive Manufacturing Process with Armis Centrix™

Asset Management and Security

OT/ IoT Security

Medical Device Security

Vulnerability Prioritization and Remediation

Compliance Frameworks

Resources

Armis

The Invisible Front Line: AI-powered Cyber Threats Illuminate the Dark Side

Partners

Partner Portal

About Us

Connect With Us

Rejetto HTTP File Server Remote Code Execution