Vulnerability Details CVE-2021-36921
AIMANAGER before B115 on MONITORAPP Application Insight Web Application Firewall (AIWAF) devices with Manager 2.1.0 has Improper Authentication. An attacker can gain administrative access by modifying the response to an authentication check request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.9%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
- https://github.com/fireeye/Vulnerability-Disclosures/blob/master/FEYE-2021-0021/FEYE-2021-0021.md
- https://github.com/monitorapp-aicc/report/wiki/CVE-2021-36921
- https://www.monitorapp.com/waf/
- https://github.com/fireeye/Vulnerability-Disclosures/blob/master/FEYE-2021-0021/FEYE-2021-0021.md
- https://github.com/monitorapp-aicc/report/wiki/CVE-2021-36921
- https://www.monitorapp.com/waf/
Products affected by CVE-2021-36921
-
cpe:2.3:a:monitorapp:application_insight_manager:b107
-
cpe:2.3:a:monitorapp:application_insight_web_application_firewall:-