CVE-2021-32957

🗓️ 01 Apr 2022 22:17:08Reported by icscertType

A function in MDT AutoSave versions prior to v6.02.06 is vulnerable to binary hijacking

Reporter	Title	Published	Views	Family All 9
CNNVD	MDT AutoSave SQL注入漏洞	8 Jul 202100:00	–	cnnvd
Cvelist	CVE-2021-32957 MDT AutoSave Uncontrolled Search Path Element	1 Apr 202222:17	–	cvelist
EUVD	EUVD-2021-19678	7 Oct 202500:30	–	euvd
ICS	MDT AutoSave	8 Jul 202100:00	–	ics
NVD	CVE-2021-32957	1 Apr 202223:15	–	nvd
OSV	CVE-2021-32957	1 Apr 202223:15	–	osv
Prion	Design/Logic Flaw	1 Apr 202223:15	–	prion
RedhatCVE	CVE-2021-32957	22 May 202521:19	–	redhatcve
Vulnrichment	CVE-2021-32957 MDT AutoSave Uncontrolled Search Path Element	1 Apr 202222:17	–	vulnrichment

NVD

Vulners

Node

auvesy-mdt autosaveRange<6.02.06

auvesy-mdt autosaveRange7.00–7.04

auvesy-mdt autosave_for_system_platformRange<4.01

auvesy-mdt autosave_for_system_platformMatch5.00

[
  {
    "product": "MDT AutoSave",
    "vendor": "MDT Software",
    "versions": [
      {
        "lessThan": "6.02.06",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "MDT AutoSave",
    "vendor": "MDT Software",
    "versions": [
      {
        "lessThan": "7.04",
        "status": "affected",
        "version": "7.00",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "AutoSave for System Platform (A4SP)",
    "vendor": "MDT Software",
    "versions": [
      {
        "lessThan": "4.01",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "A4SP",
    "vendor": "MDT Software",
    "versions": [
      {
        "status": "affected",
        "version": "5.00"
      }
    ]
  }
]

Source	Link
cisa	www.cisa.gov/uscert/ics/advisories/icsa-21-189-02

21 Nov 2024 06:08Current

7.6High risk

Vulners AI Score7.6

CVSS 25

CVSS 3.17.5

EPSS0.00173

SSVC

CWE-89