The vulnerability in the implementation of the executable file C:\R-SeeNet\apache\bin\httpd.exe, a monitoring software for routers of the Advantech R-SeeNet series, allows a perpetrator to gain elevated privileges.

🗓️ 01 Dec 2021 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 3 Views

Flaw in Advantech R-SeeNet web server enables privilege escalation via weak C:\R-SeeNet access control.

Reporter	Title	Published	Views	Family All 13
Circl	CVE-2021-21912	22 Dec 202122:23	–	circl
CNNVD	Advantech R-SeeNet 安全漏洞	22 Nov 202100:00	–	cnnvd
CNVD	Advantech R-SeeNet elevation of privilege vulnerability (CNVD-2021-90865)	24 Nov 202100:00	–	cnvd
CVE	CVE-2021-21912	22 Dec 202118:06	–	cve
Cvelist	CVE-2021-21912	22 Dec 202118:06	–	cvelist
EUVD	EUVD-2021-9083	3 Oct 202520:07	–	euvd
ICS	Advantech R-SeeNet	14 Dec 202100:00	–	ics
NVD	CVE-2021-21912	22 Dec 202119:15	–	nvd
OSV	CVE-2021-21912	22 Dec 202119:15	–	osv
Prion	Privilege escalation	22 Dec 202119:15	–	prion

Source	Link
securitylab	www.securitylab.ru/vulnerability/526790.php
safe-surf	www.safe-surf.ru/upload/VULN/VULN-20211124.3.pdf
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2021112314
talosintelligence	www.talosintelligence.com/vulnerability_reports/TALOS-2021-1360
web	www.web.nvd.nist.gov/view/vuln/detail

13 Sep 2024 00:00Current

7.3High risk

Vulners AI Score7.3

CVSS 27.2

CVSS 38.8

EPSS0.00378

privilege escalation weak access control R SeeNet directory monitoring software Advantech SeeNet