CVE-2021-41316

{"id": "CVE-2021-41316", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 8.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:N/I:C/A:C", "authentication": "SINGLE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 9.2, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 5.2, "exploitabilityScore": 2.8}]}, "published": "2021-09-17T15:15:07.957", "references": [{"url": "https://blog.device42.com/2021/09/critical-fixes-in-17-05-01/", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://docs.device42.com/auto-discovery/nmap-autodiscovery/", "tags": ["Product", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://docs.device42.com/auto-discovery/remote-collector-rc/", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-88"}]}], "descriptions": [{"lang": "en", "value": "The Device42 Main Appliance before 17.05.01 does not sanitize user input in its Nmap Discovery utility. An attacker (with permissions to add or edit jobs run by this utility) can inject an extra argument to overwrite arbitrary files as the root user on the Remote Collector."}, {"lang": "es", "value": "Device42 Main Appliance versiones anteriores a 17.05.01, no sanea la entrada del usuario en su utilidad Nmap Discovery. Un atacante (con permisos para agregar o editar trabajos ejecutados por esta utilidad) puede inyectar un argumento extra para sobrescribir archivos arbitrarios como el usuario root en el Remote Collector"}], "lastModified": "2021-09-30T18:23:27.640", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:device42:device42:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B149253C-5FFF-4771-BD93-5CFBFFDB677D", "versionEndExcluding": "17.05.01"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}