PT-2021-7989 · Emerson · Emerson Rosemount X-Stream Gas Analyzer

Published

2021-05-20

Updated

2021-05-28

CVE-2021-27467

CVSS v2.0

6.4

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions Emerson Rosemount X-STREAM Gas Analyzer (affected versions not specified)

Description A vulnerability in the web interface of Emerson Rosemount X-STREAM Gas Analyzer allows an attacker to route clicks or keystrokes to another page provided by the attacker, potentially gaining unauthorized access to sensitive information. The issue is also related to a buffer overflow in the software. This could enable a remote attacker to disclose protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Clickjacking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1021

Related Identifiers

BDU:2024-01076

CVE-2021-27467

Affected Products

Emerson Rosemount X-Stream Gas Analyzer

PT-2021-7989 · Emerson · Emerson Rosemount X-Stream Gas Analyzer

CVE-2021-27467

Weakness Enumeration

Related Identifiers

Affected Products

References · 5