Lucene search
China National Vulnerability DatabaseCNVD-2021-101934HistoryDec 17, 2021 - 12:00 a.m.
FatPipe WARP, IPVPN, and MPVPN Authorization Vulnerability (CNVD-2021-101934)
2021-12-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.002 Low
EPSS
Percentile
57.1%
FatPipe is a WAN redundancy technology from FatPipe USA that provides companies with automated and dynamic failover as a result of a WAN component or service failure resulting in a data line connection outage.A security vulnerability exists in FatPipe WARP, IPVPN and MPVPN, which stems from a lack of authorization in the software’s web management interface. An attacker could use the vulnerability to access the URL “/fpui/jsp/index.jsp”, resulting in an unknown impact and a possible breach of confidentiality.
| CPE | Name | Operator | Version |
|---|---|---|---|
| fatpipe warp | eq | 10.1.2 | |
| fatpipe warp | lt | 10.2.2 | |
| fatpipe ipvpn | eq | 10.1.2 | |
| fatpipe ipvpn | lt | 10.2.2 | |
| fatpipe mpvpn | eq | 10.1.2 | |
| fatpipe mpvpn | lt | 10.2.2 |
Related
nvd
nvd
CVE-2021-27858
2021-12-15 20:15:08
prion
prion
Authorization
2021-12-15 20:15:00
cve
cve
CVE-2021-27858
2021-12-15 20:15:08
cvelist
cvelist
CVE-2021-27858 Missing authorization vulnerability in FatPipe software
2021-09-27 00:00:00
nessus
nessus
FatPipe MPVPN < 10.1.2r60p91 / 10.2.2 < 10.2.2r42 Multiple Vulnerabilities
2023-05-25 00:00:00