How severe is CVE-2021-28171?

CVE-2021-28171 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2021-28171

Name: deltaflow
Author: deltaflow_project

9.8CRITICAL

The Vangene deltaFlow E-platform does not take properly protective measures. Attackers can obtain privileged permissions remotely by tampering with users’ data in the Cookie.

Published: 4/6/2021Updated: 11/21/2024

Description

The Vangene deltaFlow E-platform does not take properly protective measures. Attackers can obtain privileged permissions remotely by tampering with users’ data in the Cookie.

AI AnalysisPowered by AI

Affected Products

deltaflow_projectdeltaflow

References

https://www.chtsecurity.com/news/7f0874b5-516b-4637-842d-b6fb6c335c66
Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-4618-4dcc2-1.html
Third Party Advisory
https://www.chtsecurity.com/news/7f0874b5-516b-4637-842d-b6fb6c335c66
Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-4618-4dcc2-1.html
Third Party Advisory