Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-20841

Improper access control in Management screen of EC-CUBE 2 series 2.11.2 to 2.17.1 allows a remote authenticated attacker to bypass access restriction and to alter System settings via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.0%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
Products affected by CVE-2021-20841
  • Ec-Cube » Ec-Cube » Version: 2.11.2
    cpe:2.3:a:ec-cube:ec-cube:2.11.2
  • Ec-Cube » Ec-Cube » Version: 2.11.3
    cpe:2.3:a:ec-cube:ec-cube:2.11.3
  • Ec-Cube » Ec-Cube » Version: 2.11.4
    cpe:2.3:a:ec-cube:ec-cube:2.11.4
  • Ec-Cube » Ec-Cube » Version: 2.11.5
    cpe:2.3:a:ec-cube:ec-cube:2.11.5
  • Ec-Cube » Ec-Cube » Version: 2.12.0
    cpe:2.3:a:ec-cube:ec-cube:2.12.0
  • Ec-Cube » Ec-Cube » Version: 2.12.1
    cpe:2.3:a:ec-cube:ec-cube:2.12.1
  • Ec-Cube » Ec-Cube » Version: 2.12.2
    cpe:2.3:a:ec-cube:ec-cube:2.12.2
  • Ec-Cube » Ec-Cube » Version: 2.12.3
    cpe:2.3:a:ec-cube:ec-cube:2.12.3
  • Ec-Cube » Ec-Cube » Version: 2.12.4
    cpe:2.3:a:ec-cube:ec-cube:2.12.4
  • Ec-Cube » Ec-Cube » Version: 2.12.5
    cpe:2.3:a:ec-cube:ec-cube:2.12.5
  • Ec-Cube » Ec-Cube » Version: 2.12.6
    cpe:2.3:a:ec-cube:ec-cube:2.12.6
  • Ec-Cube » Ec-Cube » Version: 2.13.0
    cpe:2.3:a:ec-cube:ec-cube:2.13.0
  • Ec-Cube » Ec-Cube » Version: 2.13.1
    cpe:2.3:a:ec-cube:ec-cube:2.13.1
  • Ec-Cube » Ec-Cube » Version: 2.13.2
    cpe:2.3:a:ec-cube:ec-cube:2.13.2
  • Ec-Cube » Ec-Cube » Version: 2.13.3
    cpe:2.3:a:ec-cube:ec-cube:2.13.3
  • Ec-Cube » Ec-Cube » Version: 2.13.4
    cpe:2.3:a:ec-cube:ec-cube:2.13.4
  • Ec-Cube » Ec-Cube » Version: 2.13.5
    cpe:2.3:a:ec-cube:ec-cube:2.13.5
  • Ec-Cube » Ec-Cube » Version: 2.17.0
    cpe:2.3:a:ec-cube:ec-cube:2.17.0
  • Ec-Cube » Ec-Cube » Version: 2.17.1
    cpe:2.3:a:ec-cube:ec-cube:2.17.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved