Lucene search

[email protected]CVE-2021-45475

HistoryOct 27, 2022 - 10:15 a.m.

CVE-2021-45475

2022-10-2710:15:10

CWE-200

[email protected]

web.nvd.nist.gov

cve-2021-45475

yordam library

document automation

version 19.02

information disclosure

nvd

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.5%

JSON

Yordam Library Information Document Automation product before version 19.02 has an unauthenticated Information disclosure vulnerability.

Affected configurations

NVD

Node

yordamlibrary_automation_systemRange<19.02

CPENameOperatorVersion
yordam:library_automation_systemyordam library automation systemlt19.02

CPE	Name	Operator	Version
yordam:library_automation_system	yordam library automation system	lt	19.02

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Yordam Library Information Document Automation Program",
    "vendor": "Yordam Informatics Systems",
    "versions": [
      {
        "lessThan": "19.02",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

www.usom.gov.tr/bildirim/tr-22-0669

Social References

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.5%

JSON

Related for CVE-2021-45475

prion1 nvd1 cvelist1