Raidrive before v2021.12.35 allows attackers to arbitrarily move log files by pre-creating a mountpoint and log files before Raidrive is installed. Rated low severity (CVSS 2.0), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
Information Disclosure
Raidrive
NVD
GitHub
CVSS 3.1
2.0
EPSS
0.3%