CVE-2021-42121

Name of the Vulnerable Software and Affected Versions Business-DNA Solutions GmbH’s TopEase Platform versions prior to 7.1.28

Description The issue is related to insufficient input validation in web applications on the TopEase Platform, specifically affecting date attribute(s) of objects. This allows an authenticated remote attacker with object modification privileges to insert an unexpected format into date fields. As a result, the object page that contains the date field can be broken.

Recommendations For versions prior to 7.1.28, update to version 7.1.28 or later to resolve the issue.