CVE-2021-28173

🗓️ 06 Apr 2021 12:17:15Reported by twcertType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 19 Views

The file upload function of Vangene deltaFlow E-platform is vulnerable to remote attacks

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 3
NVD	CVE-2021-28173	6 Apr 202112:15	–	nvd
Cvelist	CVE-2021-28173 Vangene deltaFlow E-platform - Arbitrary File Upload	6 Apr 202111:20	–	cvelist
Prion	Unrestricted file upload	6 Apr 202112:15	–	prion

Nvd

Node

deltaflow_project deltaflowRange4.0–7.7

[
  {
    "product": "deltaFlow E-platform",
    "vendor": "Vangene",
    "versions": [
      {
        "status": "affected",
        "version": "4"
      }
    ]
  }
]

Source	Link
chtsecurity	www.chtsecurity.com/news/7f0874b5-516b-4637-842d-b6fb6c335c66
twcert	www.twcert.org.tw/tw/cp-132-4620-58f9c-1.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Apr 2021 12:15Current

9.9High risk

Vulners AI Score9.9

CVSS27.5

CVSS39.8

EPSS0.00748

CWE-434