CVE-2021-27860
FatPipe WARP, IPVPN, and MPVPN Configuration Upload exploit
CVSS
—
No CVSS
EPSS
39.8%
p98
KEV
YES
Jan 10, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
39.8%EPSS · 30 days39.8%
2026-06-302026-07-16
Product
FatPipe / WARP, IPVPN, and MPVPN software
Vulnerability
FatPipe WARP, IPVPN, and MPVPN Configuration Upload exploit
Added to KEV
Jan 10, 2022
Remediate by
Jan 24, 2022
Known ransomware use
No
Summary description
A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software allows a remote, unauthenticated attacker to upload a file to any location on the filesystem.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2021-27860
No related CVEs by CWE or product.