CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-20101

Machform prior to version 16 is vulnerable to HTTP host header injection due to improperly validated host headers. This could cause a victim to receive malformed content.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.4%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 5.8

References

https://www.tenable.com/security/research/tra-2021-25%2Chttps://www.machform.com/blog-machform-16-released/
https://www.tenable.com/security/research/tra-2021-25%2Chttps://www.machform.com/blog-machform-16-released/

Products affected by CVE-2021-20101

Machform » Machform » Version: 13

cpe:2.3:a:machform:machform:13
Machform » Machform » Version: 14

cpe:2.3:a:machform:machform:14
Machform » Machform » Version: 15

cpe:2.3:a:machform:machform:15
Machform » Machform » Version: 2.0

cpe:2.3:a:machform:machform:2.0
Machform » Machform » Version: 3.5

cpe:2.3:a:machform:machform:3.5
Machform » Machform » Version: 4.2.3

cpe:2.3:a:machform:machform:4.2.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-20101

Products

Pricing

Contact Us