CVE-2021-35521

2021-07-2211:32:42

mitre

www.cve.org

path traversal

idemia morpho wave compact

visionpass

denial of services

information disclosure

tcp/ip packets

AI Score

Confidence

High

EPSS

0.002

Percentile

57.8%

JSON

A path traversal in Thrift command handlers in IDEMIA Morpho Wave Compact and VisionPass devices before 2.6.2 allows remote authenticated attackers to achieve denial of services and information disclosure via TCP/IP packets.

References

biometricdevices.idemia.com/s/global-search/0696700000JJa0zAAD?sharing=true

biometricdevices.idemia.com/s/global-search/0696700000JJa1nAAD?sharing=true

www.idemia.com