Vulnerability Details CVE-2021-38475
The database connection to the server is performed by calling a specific API, which could allow an unprivileged user to gain SYSDBA permissions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.1%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 9.0
References
Products affected by CVE-2021-38475
-
cpe:2.3:a:auvesy:versiondog:4.0.0
-
cpe:2.3:a:auvesy:versiondog:4.5.0
-
cpe:2.3:a:auvesy:versiondog:5.0.0
-
cpe:2.3:a:auvesy:versiondog:5.5.0
-
cpe:2.3:a:auvesy:versiondog:6.0.0
-
cpe:2.3:a:auvesy:versiondog:6.5.0
-
cpe:2.3:a:auvesy:versiondog:6.5.1
-
cpe:2.3:a:auvesy:versiondog:6.5.2
-
cpe:2.3:a:auvesy:versiondog:7.0.0
-
cpe:2.3:a:auvesy:versiondog:7.0.1
-
cpe:2.3:a:auvesy:versiondog:7.0.2
-
cpe:2.3:a:auvesy:versiondog:7.5.0