Partner Softwares Partner Software application and Partner Web application do not sanitize files uploaded on the reports tab, allowing an authenticated attacker to upload a malicious file and compromise the device. By default, the software runs as SYSTEM, heightening the severity of the vulnerability.