CVE-2021-27453

HIGH

7.3

CVSS Severity Score

EPSS Score0.0600%

EPSS Percentile37.48th

Published2021年12月21日

Last Modified2024年11月21日

Vulnerability Description

Mesa Labs AmegaView Versions 3.0 uses default cookies that could be set to bypass authentication to the web application, which may allow an attacker to gain access.

Affected Platforms (CPE)

📦

Mesalabs

Amegaview

<= 3.0

References & Advisories

🔗 https://us-cert.cisa.gov/ics/advisories/icsa-21-147-03

相關漏洞威脅

CVE-2021-2744710.0

Mesa Labs AmegaView version 3.0 is vulnerable to a command injection, which may allow an attacker to remotely execute arbitrary co...

CVE-2021-274499.9

Mesa Labs AmegaView Versions 3.0 and prior has a command injection vulnerability that can be exploited to execute commands in the ...

CVE-2021-274457.8

Mesa Labs AmegaView Versions 3.0 and prior has insecure file permissions that could be exploited to escalate privileges on the dev...

CVE-2021-274517.3

Mesa Labs AmegaView Versions 3.0 and prior’s passcode is generated by an easily reversible algorithm, which may allow an attacker ...