CVE-2021-27770 in Sametime Proxyinfo

Zusammenfassung

von MITRE • 13.05.2022

The vulnerability was discovered within the “FaviconService”. The service takes a base64-encoded URL which is then requested by the webserver. We assume this service is used by the “meetings”-function where users can specify an external URL where the online meeting will take place.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

HCL Software

Reservieren

26.02.2021

Veröffentlichung

13.05.2022

Moderieren

akzeptiert

Eintrag

VDB-199736

CPE

bereit

CWE

CWE-284 (bestätigt)

CVSS

6.8 (CNA)

EPSS

0.00352

KEV

nein

Aktivitäten

very low

Sektor

Agriculture, Pharma, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2021-27770
NVD	https://nvd.nist.gov/vuln/detail/CVE-2021-27770
CVE Details	https://www.cvedetails.com/cve/CVE-2021-27770/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!