CyberSec.Space Logo
Back to CVE Browser

CVE-2021-45418

HIGH
8.8
CVSS Severity Score
EPSS Score0.0610%
EPSS Percentile6.10th
PublishedDec 22, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

Certain Starcharge products are vulnerable to Directory Traversal via main.cgi. The affected products include: Nova 360 Cabinet <=1.3.0.0.6 - Fixed: 1.3.0.0.9 and Titan 180 Premium <=1.3.0.0.7b102 - Fixed: Beta1.3.0.1.0.

Affected Platforms (CPE)

πŸ’»
Starcharge

Titan 180 Premium Firmware

<= 1.3.0.0.6
πŸ’»
Starcharge

Nova 360 Cabinet Firmware

<= 1.3.0.0.7b102

References & Advisories

πŸ”— http://starcharge.com
πŸ”— https://github.com/shortmore/trsh/blob/main/starcharge/CVE-2021-45418.md
πŸ”— https://vincss.net
πŸ”— http://starcharge.com
πŸ”— https://github.com/shortmore/trsh/blob/main/starcharge/CVE-2021-45418.md
πŸ”— https://vincss.net

Related Vulnerabilities

CVE-2021-138810.0

A vulnerability in an API endpoint of Cisco ACI Multi-Site Orchestrator (MSO) installed on the Application Services Engine could a...

CVE-2021-4155610.0

sqclass.cpp in Squirrel through 2.2.5 and 3.x through 3.1 allows an out-of-bounds read (in the core interpreter) that can lead to ...

CVE-2021-3467910.0

Thycotic Password Reset Server before 5.3.0 allows credential disclosure.

CVE-2021-2132110.0

fastify-reply-from is an npm package which is a fastify plugin to forward the current http request to another server. In fastify-r...