Lucene search

TR-CERTCVELIST:CVE-2021-45475

HistoryOct 27, 2022 - 8:40 a.m.

CVE-2021-45475 Information disclosure in Yordam Library Information Document Automation Program

2022-10-2708:40:10

CWE-200

TR-CERT

www.cve.org

information disclosure

yordam library

automation program

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

5.7

Confidence

High

EPSS

0.001

Percentile

31.3%

JSON

Yordam Library Information Document Automation product before version 19.02 has an unauthenticated Information disclosure vulnerability.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Yordam Library Information Document Automation Program",
    "vendor": "Yordam Informatics Systems",
    "versions": [
      {
        "lessThan": "19.02",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

www.usom.gov.tr/bildirim/tr-22-0669

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

5.7

Confidence

High

EPSS

0.001

Percentile

31.3%

JSON

Related for CVELIST:CVE-2021-45475