Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2021-20844
HistoryNov 24, 2021 - 4:15 p.m.

CVE-2021-20844

2021-11-2416:15:13
CWE-116
[email protected]
web.nvd.nist.gov

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

5.7 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

48.9%

JSON

Improper neutralization of HTTP request headers for scripting syntax vulnerability in the Web GUI of RTX830 Rev.15.02.17 and earlier, NVR510 Rev.15.01.18 and earlier, NVR700W Rev.15.00.19 and earlier, and RTX1210 Rev.14.01.38 and earlier allows a remote authenticated attacker to obtain sensitive information via a specially crafted web page.

Affected configurations

NVD
Node
yamahartx830_firmwareRange15.02.17
AND
yamahartx830Match-
Node
yamahanvr510_firmwareRange15.01.18
AND
yamahanvr510Match-
Node
yamahanvr700w_firmwareRange15.00.19
AND
yamahanvr700wMatch-
Node
yamahartx1210_firmwareRange14.01.38
AND
yamahartx1210Match-
Node
ntt-westbiz_box_rtx830_firmwareRange15.02.17
AND
ntt-westbiz_box_rtx830Match-
Node
ntt-westbiz_box_nvr510_firmwareRange<15.01.18
AND
ntt-westbiz_box_nvr510Match-
Node
ntt-westbiz_box_nvr700w_firmwareRange15.00.19
AND
ntt-westbiz_box_nvr700wMatch-
Node
ntt-westbiz_box_rtx1210_firmwareRange14.01.38
AND
ntt-westbiz_box_rtx1210Match-

Related

cvelist 1
prion 1
cve 1
cvelist
cvelist
CVE-2021-20844
2021-11-24 08:25:45
prion
prion
Input validation
2021-11-24 16:15:00
cve
cve
CVE-2021-20844
2021-11-24 16:15:13

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

5.7 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

48.9%

JSON
Related for NVD:CVE-2021-20844
cvelist1prion1cve1