Vulnerability Details CVE-2021-34066
An issue was discovered in EdgeGallery/developer before v1.0. There is a "Deserialization of yaml file" vulnerability that can allow attackers to execute system command through uploading the malicious constructed YAML file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2021-34066
-
cpe:2.3:a:edgegallery:developer-be:-
-
cpe:2.3:a:edgegallery:developer-be:0.9
-
cpe:2.3:a:edgegallery:developer-be:0.9.1