CVE-2021-42540

The affected product is vulnerable to a unsanitized extract folder for system configuration. A low-privileged user can leverage this logic to overwrite the settings and other key functionality. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt