CVE-2021-36921

2021-08-1217:21:01

mitre

www.cve.org

aimanager

b115

monitorapp

aiwaf

manager 2.1.0

improper authentication

AI Score

9.2

Confidence

High

EPSS

0.002

Percentile

57.4%

JSON

AIMANAGER before B115 on MONITORAPP Application Insight Web Application Firewall (AIWAF) devices with Manager 2.1.0 has Improper Authentication. An attacker can gain administrative access by modifying the response to an authentication check request.

References

github.com/fireeye/Vulnerability-Disclosures/blob/master/FEYE-2021-0021/FEYE-2021-0021.md

github.com/monitorapp-aicc/report/wiki/CVE-2021-36921

www.monitorapp.com/waf/