CVE-2021-30638
Published at:
-
27-04-2021 09:15
Last modified:
-
04-06-2022 03:24
Total changes:
-
4
Description
Common Vulnerability Scoring System (CVSS)
Low
Attack complexity
Network
Attack vector
None
Availability
High
Confidentiality
None
Integrity
None
Privileges required
Unchanged
Scope
None
User interaction
7.5
Base score
3.9
3.6
Exploitability score
Impact score
Verification logic
Reference
- https://lists.apache.org/thread.html/r37dab61fc7f7088d4311e7f995ef4117d58d86a675f0256caa6991eb%40%3Cusers.tapestry.apache.org%3E
- [oss-security] 20210427 CVE-2021-30638: An Information Disclosure due to insufficient input validation exists in Apache Tapestry 5.4.0 and later-Mailing List, Third Party Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-21-491/
- https://security.netapp.com/advisory/ntap-20210528-0004/
Keywords