Vulnerabilities > Auvesy MDT > Autosave FOR System Platform > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-01 | CVE-2021-32953 | SQL Injection vulnerability in Auvesy-Mdt Autosave and Autosave for System Platform An attacker could utilize SQL commands to create a new user MDT AutoSave versions prior to v6.02.06 and update the user’s permissions, granting the attacker the ability to login. | 9.8 |
| 2022-04-01 | CVE-2021-32933 | OS Command Injection vulnerability in Auvesy-Mdt Autosave and Autosave for System Platform An attacker could leverage an API to pass along a malicious file that could then manipulate the process creation command line in MDT AutoSave versions prior to v6.02.06 and run a command line argument. | 9.8 |