CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-23020

The NAAS 3.x before 3.10.0 API keys were generated using an insecure pseudo-random string and hashing algorithm which could lead to predictable keys.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.7%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 2.1

References

Products affected by CVE-2021-23020

F5 » Nginx Controller » Version: 3.0.0

cpe:2.3:a:f5:nginx_controller:3.0.0
F5 » Nginx Controller » Version: 3.1.0

cpe:2.3:a:f5:nginx_controller:3.1.0
F5 » Nginx Controller » Version: 3.2.0

cpe:2.3:a:f5:nginx_controller:3.2.0
F5 » Nginx Controller » Version: 3.3.0

cpe:2.3:a:f5:nginx_controller:3.3.0
F5 » Nginx Controller » Version: 3.4.0

cpe:2.3:a:f5:nginx_controller:3.4.0
F5 » Nginx Controller » Version: 3.5.0

cpe:2.3:a:f5:nginx_controller:3.5.0
F5 » Nginx Controller » Version: 3.6.0

cpe:2.3:a:f5:nginx_controller:3.6.0
F5 » Nginx Controller » Version: 3.7.0

cpe:2.3:a:f5:nginx_controller:3.7.0
F5 » Nginx Controller » Version: 3.8.0

cpe:2.3:a:f5:nginx_controller:3.8.0
F5 » Nginx Controller » Version: 3.9.0

cpe:2.3:a:f5:nginx_controller:3.9.0

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved