How severe is CVE-2021-45891?

CVE-2021-45891 has a CVSS v3 score of 8.8 (HIGH).

CVE-2021-45891

Name: arc
Author: zauner

8.8HIGH

An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4., that allows attackers to escalate privileges within the application, since all permission checks are done client-side, not server-side.

Опубликовано: 4/5/2022Обновлено: 11/21/2024

Описание

An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4., that allows attackers to escalate privileges within the application, since all permission checks are done client-side, not server-side.

ИИ-АнализНа базе ИИ

Затронутые продукты

zaunerarc

4.2.0.4

Ссылки

https://syss.de
Third Party Advisory
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2021-063.txt
ExploitThird Party Advisory
https://syss.de
Third Party Advisory
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2021-063.txt
ExploitThird Party Advisory