Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Vulnerability Details CVE-2021-33208
The "Register an Ehcache Configuration File" admin feature in MashZone NextGen through 10.7 GA allows XXE attacks via a malicious XML configuration file.
Exploit prediction scoring system (EPSS) score
EPSS Score
0.009
EPSS Ranking
75.2%
CVSS Severity
CVSS v3 Score
7.2
CVSS v2 Score
6.5
References
https://github.com/blackarrowsec/advisories/tree/master/2021/CVE-2021-33208
https://www.softwareag.com/corporate/products/az/mashzone_nextgen/default
https://github.com/blackarrowsec/advisories/tree/master/2021/CVE-2021-33208
https://www.softwareag.com/corporate/products/az/mashzone_nextgen/default
Products affected by CVE-2021-33208
Softwareag
»
Mashzone Nextgen
»
Version:
N/A
cpe:2.3:a:softwareag:mashzone_nextgen:-
Softwareag
»
Mashzone Nextgen
»
Version:
10.7
cpe:2.3:a:softwareag:mashzone_nextgen:10.7
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved