### [CVE-2021-41528](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41528)
![](https://img.shields.io/static/v1?label=Product&message=RISC%20Platform&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-863%20Incorrect%20Authorization&color=brightgreen)

### Description

An error when handling authorization related to the import / export interfaces on the RISC Platform prior to the saas-2021-12-29 release can potentially be exploited to access the import / export functionality with low privileges.

### POC

#### Reference
- https://medium.com/@amroot/cve-2021-41528-flexera-risc-networks-vulnerable-authorization-schema-3e980d59217a

#### Github
- https://github.com/zhanpengliu-tencent/medium-cve