Home

CVE-2021-21479

Description

In SCIMono before 0.0.19, it is possible for an attacker to inject and execute java expression compromising the availability and integrity of the system.

Risk Information

Base Score
9.1
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
EPSS Score
Exploitation Probability
85.973

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2021-21479 are fixed in SAP-scimono-server 0.0.19Windows
Vulnerabilities CVE-2021-21479 are fixed in SAP-scimono-server for Linux 0.0.19Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234