CVE-2021-21501

CWE-22Path Traversal4 documents4 sources
Severity
7.5HIGH
EPSS
0.8%
top 26.78%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Apache Software Foundation Apache ServicecombGithub.com Apache/servicecomb-service-centerApache Servicecomb
Timeline
PublishedAug 10
Latest updateSep 1

Description

Improper configuration will cause ServiceComb ServiceCenter Directory Traversal problem in ServcieCenter 1.x.x versions and fixed in 2.0.0.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

NVDapache/servicecomb1.0.02.0.0
CVEListV5apache_software_foundation/apache_servicecombApache ServiceComb-Service-Center 1.x2.0.0

🔴Vulnerability Details

3
GHSA
Path traversal in ServiceCenter2021-09-01
OSV
Path traversal in ServiceCenter2021-09-01
CVEList
ServiceComb ServiceCenter Directory Traversal2021-08-10
CVE-2021-21501 (HIGH CVSS 7.5) | Improper configuration will cause S | cvebase.io