| |
Vulnerability CVE-2021-45916
Published: 2022-01-03
| Description: |
The programming function of Shockwall system has an improper input validation vulnerability. An authenticated attacker within the local area network can send malicious response to the server to disrupt the service partially. |
Type:
CWE-20 (Improper Input Validation)
CVSS2 => (AV:A/AC:L/Au:S/C:N/I:N/A:P)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
2.7/10 |
2.9/10 |
5.1/10 |
| Exploit range |
Attack complexity |
Authentication |
Adjacent network |
Low |
Single time |
| Confidentiality impact |
Integrity impact |
Availability impact |
None |
None |
Partial |
References: |
https://www.twcert.org.tw/tw/cp-132-5432-b9074-1.html
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
