PT-2021-21362 · Siren · Siren Investigate

Published

2021-11-02

Updated

2021-11-04

CVE-2021-36794

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Siren Investigate versions prior to 11.1.4

Description The issue occurs when the cluster feature of the Siren Alert application is enabled, causing TLS verifications to be disabled globally in the Siren Investigate main process.

Recommendations For versions prior to 11.1.4, update to version 11.1.4 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-36794

Affected Products

Siren Investigate

PT-2021-21362 · Siren · Siren Investigate

CVE-2021-36794

Related Identifiers

Affected Products

References · 6