Lucene search
SymantecCVELIST:CVE-2021-30642HistoryApr 27, 2021 - 2:49 p.m.
CVE-2021-30642
2021-04-2714:49:37
symantec
www.cve.org
1
An input validation flaw in the Symantec Security Analytics web UI 7.2 prior 7.2.7, 8.1, prior to 8.1.3-NSR3, 8.2, prior to 8.2.1-NSR2 or 8.2.2 allows a remote, unauthenticated attacker to execute arbitrary OS commands on the target with elevated privileges.
CNA Affected
[
{
"product": "Symantec Security Analytics",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Security Analytics 7.2 prior 7.2.7, 8.1 prior to 8.1.3-NSR3, 8.2 prior to 8.2.1-NSR2 or 8.2.2"
}
]
}
]Related
cve
cve
CVE-2021-30642
2021-04-27 15:15:07
prion
prion
Input validation
2021-04-27 15:15:00
nvd
nvd
CVE-2021-30642
2021-04-27 15:15:07
symantec
symantec
OS Command Injection in Security Analytics
2021-04-20 19:54:12
Authentication Bypass in ASG and ProxySG
2021-06-29 15:32:25