Authentication flaw

2021-08-1218:15:00

PRIOn knowledge base

www.prio-n.com

8.9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

57.4%

JSON

AIMANAGER before B115 on MONITORAPP Application Insight Web Application Firewall (AIWAF) devices with Manager 2.1.0 has Improper Authentication. An attacker can gain administrative access by modifying the response to an authentication check request.

CPENameOperatorVersion
application_insight_managereq>= b107 AND < b115

CPE	Name	Operator	Version
	application_insight_manager	eq	>= b107 AND < b115

References

github.com/fireeye/Vulnerability-Disclosures/blob/master/FEYE-2021-0021/FEYE-2021-0021.md

github.com/monitorapp-aicc/report/wiki/CVE-2021-36921

www.monitorapp.com/waf/