CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-40683

In Akamai EAA (Enterprise Application Access) Client before 2.3.1, 2.4.x before 2.4.1, and 2.5.x before 2.5.3, an unquoted path may allow an attacker to hijack the flow of execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.7%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.4

References

https://akamai.com/blog/news/eaa-client-escalation-of-privilege-vulnerability
https://www.akamai.com/products/enterprise-application-access
https://akamai.com/blog/news/eaa-client-escalation-of-privilege-vulnerability
https://www.akamai.com/products/enterprise-application-access

Products affected by CVE-2021-40683

Akamai » Enterprise Application Access » Version: Any

cpe:2.3:a:akamai:enterprise_application_access:*
Akamai » Enterprise Application Access » Version: N/A

cpe:2.3:a:akamai:enterprise_application_access:-
Akamai » Enterprise Application Access » Version: 2.0.1

cpe:2.3:a:akamai:enterprise_application_access:2.0.1
Akamai » Enterprise Application Access » Version: 2.4.0

cpe:2.3:a:akamai:enterprise_application_access:2.4.0
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-40683

Products

Pricing

Contact Us