exploitDog

CVE-2021-45916

Опубликовано: 03 янв. 2022

Источник: nvd

CVSS3: 3.5

CVSS2: 2.7

EPSS Низкий

Описание

The programming function of Shockwall system has an improper input validation vulnerability. An authenticated attacker within the local area network can send malicious response to the server to disrupt the service partially.

Ссылки

https://www.twcert.org.tw/tw/cp-132-5432-b9074-1.html
Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-5432-b9074-1.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:smr:shenwang_endpoint_protection_security_system:*:*:*:*:*:*:*:*

Версия до 7.20.0401 (исключая)

EPSS

Процентиль: 28%

0.00099

Низкий

3.5 Low

CVSS3

2.7 Low

CVSS2

Дефекты

CWE-20

CWE-20

Связанные уязвимости

GHSA-v723-7fm6-5c8m

github

около 4 лет назад

The programming function of Shockwall system has an improper input validation vulnerability. An authenticated attacker within the local area network can send malicious response to the server to disrupt the service partially.

EPSS

Процентиль: 28%

0.00099

Низкий

3.5 Low

CVSS3

2.7 Low

CVSS2

Дефекты

CWE-20

CWE-20