Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-40146

A Remote Code Execution (RCE) vulnerability was discovered in the Any23 YAMLExtractor.java file and is known to affect Any23 versions < 2.5. RCE vulnerabilities allow a malicious actor to execute any code of their choice on a remote machine over LAN, WAN, or internet. RCE belongs to the broader class of arbitrary code execution (ACE) vulnerabilities.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.033
EPSS Ranking 86.7%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
Products affected by CVE-2021-40146
  • Apache » Any23 » Version: 0.2
    cpe:2.3:a:apache:any23:0.2
  • Apache » Any23 » Version: 0.2.1
    cpe:2.3:a:apache:any23:0.2.1
  • Apache » Any23 » Version: 0.2.2
    cpe:2.3:a:apache:any23:0.2.2
  • Apache » Any23 » Version: 0.3.0
    cpe:2.3:a:apache:any23:0.3.0
  • Apache » Any23 » Version: 0.4.0
    cpe:2.3:a:apache:any23:0.4.0
  • Apache » Any23 » Version: 0.4.1
    cpe:2.3:a:apache:any23:0.4.1
  • Apache » Any23 » Version: 0.5.0
    cpe:2.3:a:apache:any23:0.5.0
  • Apache » Any23 » Version: 0.6.0
    cpe:2.3:a:apache:any23:0.6.0
  • Apache » Any23 » Version: 0.6.1
    cpe:2.3:a:apache:any23:0.6.1
  • Apache » Any23 » Version: 0.7.0
    cpe:2.3:a:apache:any23:0.7.0
  • Apache » Any23 » Version: 0.8.0
    cpe:2.3:a:apache:any23:0.8.0
  • Apache » Any23 » Version: 0.9.0
    cpe:2.3:a:apache:any23:0.9.0
  • Apache » Any23 » Version: 1.0
    cpe:2.3:a:apache:any23:1.0
  • Apache » Any23 » Version: 1.1
    cpe:2.3:a:apache:any23:1.1
  • Apache » Any23 » Version: 2.0
    cpe:2.3:a:apache:any23:2.0
  • Apache » Any23 » Version: 2.1
    cpe:2.3:a:apache:any23:2.1
  • Apache » Any23 » Version: 2.2
    cpe:2.3:a:apache:any23:2.2
  • Apache » Any23 » Version: 2.3
    cpe:2.3:a:apache:any23:2.3
  • Apache » Any23 » Version: 2.4
    cpe:2.3:a:apache:any23:2.4


Products
Pricing
Contact Us

Shodan ® - All rights reserved