CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-27132

SerComm AG Combo VD625 AGSOT_2.1.0 devices allow CRLF injection (for HTTP header injection) in the download function via the Content-Disposition header.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.822

EPSS Ranking 99.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

http://sercomm.com
https://cybertuz.com/blog/post/crlf-injection-CVE-2021-27132
http://sercomm.com
https://cybertuz.com/blog/post/crlf-injection-CVE-2021-27132

Products affected by CVE-2021-27132

Sercomm » Agcombo Vd625 » Version: N/A

cpe:2.3:h:sercomm:agcombo_vd625:-
Sercomm » Agcombo Vd625 Firmware » Version: agsot_2.1.0

cpe:2.3:o:sercomm:agcombo_vd625_firmware:agsot_2.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-27132

Products

Pricing

Contact Us