CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-29954

Proxy functionality built into Hubs Cloud’s Reticulum software allowed access to internal URLs, including the metadata service. This vulnerability affects Hubs Cloud < mozillareality/reticulum/1.0.1/20210428201255.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.3%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 5.0

References

https://bugzilla.mozilla.org/show_bug.cgi?id=1707898
https://www.mozilla.org/security/advisories/mfsa2021-21/
https://bugzilla.mozilla.org/show_bug.cgi?id=1707898
https://www.mozilla.org/security/advisories/mfsa2021-21/

Products affected by CVE-2021-29954

Mozilla » Hubs Cloud Reticulum » Version: Any

cpe:2.3:a:mozilla:hubs_cloud_reticulum:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-29954

Products

Pricing

Contact Us