Lucene search
IcscertCVE-2021-42535HistoryJul 27, 2022 - 9:15 p.m.
CVE-2021-42535
2022-07-2721:15:08
CWE-79
icscert
web.nvd.nist.gov
40
5
cve-2021-42535
nvd
visam vbase
security vulnerability
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
39.8%
VISAM VBASE version 11.6.0.6 does not neutralize or incorrectly neutralizes user-controllable input before the data is placed in output used as a public-facing webpage.
Affected configurations
Node
visamvbase_web-remoteMatch11.6.0.6
| Vendor | Product | Version | CPE |
|---|---|---|---|
| visam | vbase_web-remote | 11.6.0.6 | cpe:2.3:a:visam:vbase_web-remote:11.6.0.6:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "VBASE Pro-RT/ Server-RT (Web Remote)",
"vendor": "VISAM",
"versions": [
{
"status": "affected",
"version": "version 11.6.0.6"
}
]
}
]Social References
More
Related
prion
prion
Input validation
2022-07-27 21:15:00
cvelist
cvelist
CVE-2021-42535 VISAM VBASE Editor Cross Site Scripting
2022-07-27 20:21:04
nvd
nvd
CVE-2021-42535
2022-07-27 21:15:08
ics
ics
VISAM VBASE Editor
2021-11-09 12:00:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
39.8%
Related for CVE-2021-42535