cvelist/2021/26xxx/CVE-2021-26473.json

{
    "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "DATE_PUBLIC": "2021-07-07T10:49:00.000Z",
        "ID": "CVE-2021-26473",
        "STATE": "PUBLIC",
        "TITLE": "Unauthenticated arbitrary file upload and command execution in Vembu products"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "n/a",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "n/a"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "n/a"
                }
            ]
        }
    },
    "credit": [
        {
            "lang": "eng",
            "value": "Discovered by Wietse Boonstra"
        },
        {
            "lang": "eng",
            "value": "Addional research by Frank Breedijk"
        }
    ],
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "In VembuBDR before 4.2.0.1 and VembuOffsiteDR before 4.2.0.1 the http API located at /sgwebservice_o.php action logFilePath allows an attacker to write arbitrary files in the context of the web server process. These files can then be executed remotely by calling the file via the web server."
            }
        ]
    },
    "generator": {
        "engine": "Vulnogram 0.0.9"
    },
    "impact": {
        "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
        }
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "n/a"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://csirt.divd.nl/cases/DIVD-2020-00011/",
                "refsource": "CONFIRM",
                "url": "https://csirt.divd.nl/cases/DIVD-2020-00011/"
            },
            {
                "name": "https://csirt.divd.nl/2021/05/11/Vembu-zero-days/",
                "refsource": "CONFIRM",
                "url": "https://csirt.divd.nl/2021/05/11/Vembu-zero-days/"
            },
            {
                "name": "https://www.wbsec.nl/vembu",
                "refsource": "CONFIRM",
                "url": "https://www.wbsec.nl/vembu"
            },
            {
                "name": "https://csirt.divd.nl/cves/CVE-2021-26473/",
                "refsource": "CONFIRM",
                "url": "https://csirt.divd.nl/cves/CVE-2021-26473/"
            }
        ]
    },
    "source": {
        "advisory": "DIVD-2020-00011",
        "discovery": "EXTERNAL"
    }
}
"-Synchronized-Data." 2021-02-01 05:00:41 +00:00			`{`
			`"CVE_data_meta": {`
			`"ASSIGNER": "cve@mitre.org",`
Adding JSOn format records for our previous Vembu research 2022-02-04 11:34:55 +01:00			`"DATE_PUBLIC": "2021-07-07T10:49:00.000Z",`
"-Synchronized-Data." 2021-06-08 19:00:55 +00:00			`"ID": "CVE-2021-26473",`
Adding JSOn format records for our previous Vembu research 2022-02-04 11:34:55 +01:00			`"STATE": "PUBLIC",`
			`"TITLE": "Unauthenticated arbitrary file upload and command execution in Vembu products"`
"-Synchronized-Data." 2021-06-08 19:00:55 +00:00			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
"-Synchronized-Data." 2022-02-04 23:01:43 +00:00			`"product_name": "n/a",`
"-Synchronized-Data." 2021-06-08 19:00:55 +00:00			`"version": {`
			`"version_data": [`
			`{`
"-Synchronized-Data." 2022-02-04 23:01:43 +00:00			`"version_value": "n/a"`
"-Synchronized-Data." 2021-06-08 19:00:55 +00:00			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
"-Synchronized-Data." 2022-02-04 23:01:43 +00:00			`"vendor_name": "n/a"`
"-Synchronized-Data." 2021-06-08 19:00:55 +00:00			`}`
			`]`
			`}`
"-Synchronized-Data." 2021-02-01 05:00:41 +00:00			`},`
Adding JSOn format records for our previous Vembu research 2022-02-04 11:34:55 +01:00			`"credit": [`
			`{`
			`"lang": "eng",`
			`"value": "Discovered by Wietse Boonstra"`
			`},`
			`{`
			`"lang": "eng",`
			`"value": "Addional research by Frank Breedijk"`
			`}`
			`],`
"-Synchronized-Data." 2021-06-08 19:00:55 +00:00			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
"-Synchronized-Data." 2021-02-01 05:00:41 +00:00			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
Adding JSOn format records for our previous Vembu research 2022-02-04 11:34:55 +01:00			`"value": "In VembuBDR before 4.2.0.1 and VembuOffsiteDR before 4.2.0.1 the http API located at /sgwebservice_o.php action logFilePath allows an attacker to write arbitrary files in the context of the web server process. These files can then be executed remotely by calling the file via the web server."`
"-Synchronized-Data." 2021-06-08 19:00:55 +00:00			`}`
			`]`
			`},`
Adding JSOn format records for our previous Vembu research 2022-02-04 11:34:55 +01:00			`"generator": {`
			`"engine": "Vulnogram 0.0.9"`
			`},`
			`"impact": {`
			`"cvss": {`
			`"attackComplexity": "LOW",`
			`"attackVector": "NETWORK",`
			`"availabilityImpact": "HIGH",`
			`"baseScore": 9.8,`
			`"baseSeverity": "CRITICAL",`
			`"confidentialityImpact": "HIGH",`
			`"integrityImpact": "HIGH",`
			`"privilegesRequired": "NONE",`
			`"scope": "UNCHANGED",`
			`"userInteraction": "NONE",`
			`"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",`
			`"version": "3.1"`
			`}`
			`},`
"-Synchronized-Data." 2021-06-08 19:00:55 +00:00			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
"-Synchronized-Data." 2022-02-04 23:01:43 +00:00			`"value": "n/a"`
"-Synchronized-Data." 2021-06-08 19:00:55 +00:00			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
Adding JSOn format records for our previous Vembu research 2022-02-04 11:34:55 +01:00			`"name": "https://csirt.divd.nl/cases/DIVD-2020-00011/",`
			`"refsource": "CONFIRM",`
			`"url": "https://csirt.divd.nl/cases/DIVD-2020-00011/"`
"-Synchronized-Data." 2021-06-08 19:00:55 +00:00			`},`
			`{`
			`"name": "https://csirt.divd.nl/2021/05/11/Vembu-zero-days/",`
Adding JSOn format records for our previous Vembu research 2022-02-04 11:34:55 +01:00			`"refsource": "CONFIRM",`
"-Synchronized-Data." 2021-06-08 19:00:55 +00:00			`"url": "https://csirt.divd.nl/2021/05/11/Vembu-zero-days/"`
			`},`
			`{`
Adding JSOn format records for our previous Vembu research 2022-02-04 11:34:55 +01:00			`"name": "https://www.wbsec.nl/vembu",`
			`"refsource": "CONFIRM",`
			`"url": "https://www.wbsec.nl/vembu"`
"-Synchronized-Data." 2022-02-04 23:01:43 +00:00			`},`
			`{`
			`"name": "https://csirt.divd.nl/cves/CVE-2021-26473/",`
			`"refsource": "CONFIRM",`
			`"url": "https://csirt.divd.nl/cves/CVE-2021-26473/"`
"-Synchronized-Data." 2021-02-01 05:00:41 +00:00			`}`
			`]`
Adding JSOn format records for our previous Vembu research 2022-02-04 11:34:55 +01:00			`},`
			`"source": {`
			`"advisory": "DIVD-2020-00011",`
			`"discovery": "EXTERNAL"`
"-Synchronized-Data." 2021-02-01 05:00:41 +00:00			`}`
			`}`