CVE-2021-45091 — Incorrect Authorization in Endpoint Security

Severity

4.3MEDIUMNVD

EPSS

0.2%

top 54.01%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedDec 21

Latest updateDec 22

Description

Stormshield Endpoint Security from 2.1.0 to 2.1.1 has Incorrect Access Control.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

GHSA

GHSA-8p9m-jxfc-72v5: Stormshield Endpoint Security from 2↗2021-12-22

▶

CVEList

CVE-2021-45091: Stormshield Endpoint Security from 2↗2021-12-21

▶