CVE-2021-27104: Accellion FTA OS Command Injection Vulnerability. Accellion
Accellion FTA OS Command Injection Vulnerability. Accellion FTA contains an OS command injection vulnerability exploited via a crafted POST request to various admin endpoints.
- CISA KEV-listed (remediation due 2021-11-17)
- used in ransomware campaigns
- EPSS 6.4% (91.2% percentile)