CVE-2026-6885
BorG Technology Corporation · SPM 2007
Borg SPM 2007 is susceptible to an arbitrary file upload vulnerability, enabling unauthenticated remote attackers to upload and execute malicious web shells for remote code execution.
Executive summary
An arbitrary file upload vulnerability in the legacy Borg SPM 2007 platform allows unauthenticated attackers to achieve remote code execution.
Vulnerability
This is an arbitrary file upload vulnerability that permits an unauthenticated remote attacker to bypass file validation mechanisms to upload and subsequently execute malicious web shell backdoors.
Business impact
The capability to execute arbitrary code on the underlying server grants an attacker full control over the application environment. With a CVSS score of 9.8, this flaw represents a critical threat, potentially leading to data exfiltration, lateral movement within the network, and complete server compromise. The end-of-life status of the software ensures that no vendor-supplied security patches will be issued to remediate this flaw.
Remediation
Immediate Action: Due to the end-of-life status of this product, the only effective remediation is the immediate decommissioning and replacement of the SPM 2007 platform with a supported solution.
Proactive Monitoring: Monitor the web server’s file system for the creation of unauthorized scripts, particularly in directories with execution permissions, and review web server logs for suspicious POST requests.
Compensating Controls: Implement strict file upload restrictions at the WAF level and enforce read-only file system policies where possible to prevent the execution of uploaded files.
Exploitation status
Public Exploit Available: Not specified
Analyst recommendation
The severity of this vulnerability is extreme. Organizations relying on this software must assume that any exposure to the internet is dangerous and take immediate steps to isolate or replace the system to prevent a full-scale security breach.