Lucene search
MitreCVELIST:CVE-2021-44035HistoryDec 17, 2021 - 3:17 p.m.
CVE-2021-44035
2021-12-1715:17:50
mitre
www.cve.org
4
wolters kluwer
teammate am
attachment uploads
authenticated user
malicious files
CVSS3
4.4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N
AI Score
7.9
Confidence
High
EPSS
0.001
Percentile
31.1%
Wolters Kluwer TeamMate AM 12.4 Update 1 mishandles attachment uploads, such that an authenticated user may download and execute malicious files.
Related
nvd
nvd
CVE-2021-44035
2021-12-17 16:15:08
prion
prion
Code injection
2021-12-17 16:15:00
cve
cve
CVE-2021-44035
2021-12-17 16:15:08
CVSS3
4.4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N
AI Score
7.9
Confidence
High
EPSS
0.001
Percentile
31.1%
Related for CVELIST:CVE-2021-44035