Lucene search
TalosCVELIST:CVE-2021-21802HistoryJul 16, 2021 - 10:37 a.m.
CVE-2021-21802
2021-07-1610:37:19
CWE-79
talos
www.cve.org
9.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
0.808 High
EPSS
Percentile
98.3%
This vulnerability is present in device_graph_page.php script, which is a part of the Advantech R-SeeNet web applications. A specially crafted URL by an attacker and visited by a victim can lead to arbitrary JavaScript code execution.
CNA Affected
[
{
"product": "Advantech",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Advantech R-SeeNet 2.4.12 (20.10.2020)"
}
]
}
]Related
prion
prion
Code injection
2021-07-16 11:15:00
cve
cve
CVE-2021-21802
2021-07-16 11:15:09
nvd
nvd
CVE-2021-21802
2021-07-16 11:15:09
cnvd
cnvd
Advantech R-SeeNet Cross-Site Scripting Vulnerability (CNVD-2021-57185)
2021-07-19 00:00:00
nuclei
nuclei
Advantech R-SeeNet - Cross-Site Scripting
2021-07-18 13:12:01
talos
talos
9.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
0.808 High
EPSS
Percentile
98.3%
Related for CVELIST:CVE-2021-21802