PT-2021-17637 · Tapestry · Tapestry

Johannes Moritz

Published

2021-04-15

Updated

2024-02-26

CVE-2021-27850

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Tapestry version 5.4.1

Description: The issue affects Tapestry, with general information about the problem available. No estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited are provided.

Recommendations: For Tapestry version 5.4.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Deserialization of Untrusted Data

Information Disclosure

Insecure Storage of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-502CWE-200CWE-922

Related Identifiers

CVE-2021-27850

GHSA-MJ8X-CPR8-X39H

Affected Products

Tapestry

PT-2021-17637 · Tapestry · Tapestry

CVE-2021-27850

Weakness Enumeration

Related Identifiers

Affected Products

References · 22