Lucene search

TR-CERTCVE-2021-45475

HistoryOct 27, 2022 - 10:15 a.m.

CVE-2021-45475

2022-10-2710:15:10

CWE-200

TR-CERT

web.nvd.nist.gov

cve-2021-45475

yordam library

document automation

version 19.02

information disclosure

nvd

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

31.3%

JSON

Yordam Library Information Document Automation product before version 19.02 has an unauthenticated Information disclosure vulnerability.

Affected configurations

Nvd

Node

yordamlibrary_automation_systemRange<19.02

VendorProductVersionCPE
yordamlibrary_automation_system*cpe:2.3:a:yordam:library_automation_system:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
yordam	library_automation_system	*	cpe:2.3:a:yordam:library_automation_system::::::::

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Yordam Library Information Document Automation Program",
    "vendor": "Yordam Informatics Systems",
    "versions": [
      {
        "lessThan": "19.02",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

www.usom.gov.tr/bildirim/tr-22-0669

Social References

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

31.3%

JSON

Related for CVE-2021-45475