7.2
CVE-2021-32977
- EPSS 0.09%
- Veröffentlicht 04.04.2022 20:15:08
- Zuletzt bearbeitet 21.11.2024 06:08:02
- Quelle ics-cert@hq.dhs.gov
- Teams Watchlist Login
- Unerledigt Login
AVEVA System Platform versions 2017 through 2020 R2 P01 does not verify, or incorrectly verifies, the cryptographic signature for data.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Aveva ≫ System Platform Version >= 2017 < 2020
Aveva ≫ System Platform Version2020 Update-
Aveva ≫ System Platform Version2020 Updater2
Aveva ≫ System Platform Version2020 Updater2_p01
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.09% | 0.278 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 1.2 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 6.5 | 8 | 6.4 |
AV:N/AC:L/Au:S/C:P/I:P/A:P
|
| ics-cert@hq.dhs.gov | 7.2 | 1.2 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
CWE-347 Improper Verification of Cryptographic Signature
The product does not verify, or incorrectly verifies, the cryptographic signature for data.