CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-32017

An issue was discovered in JUMP AMS 3.6.0.04.009-2487. A JUMP SOAP endpoint permitted the listing of the content of the remote file system. This can be used to identify the complete server filesystem structure, i.e., identifying all the directories and files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 46.1%

CVSS Severity

CVSS v3 Score 9.9

CVSS v2 Score 4.0

References

https://cds.thalesgroup.com/en/tcs-cert/CVE-2021-32017
https://excellium-services.com/cert-xlm-advisory/cve-2021-32017/
https://excellium-services.com/cert-xlm-advisory/cve-2021-32017/

Products affected by CVE-2021-32017

Jump-Technology » Asset Management » Version: 3.6.0.04.009-2487

cpe:2.3:a:jump-technology:asset_management:3.6.0.04.009-2487

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-32017

Products

Pricing

Contact Us