CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-41547

A vulnerability has been identified in Teamcenter Active Workspace V4.3 (All versions < V4.3.11), Teamcenter Active Workspace V5.0 (All versions < V5.0.10), Teamcenter Active Workspace V5.1 (All versions < V5.1.6), Teamcenter Active Workspace V5.2 (All versions < V5.2.3). The application contains an unsafe unzipping pattern that could lead to a zip path traversal attack. This could allow and attacker to execute a remote shell with admin rights.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.5%

CVSS Severity

CVSS v3 Score 7.2

CVSS v2 Score 6.5

References

Products affected by CVE-2021-41547

Siemens » Teamcenter Active Workspace » Version: 4.3

cpe:2.3:a:siemens:teamcenter_active_workspace:4.3
Siemens » Teamcenter Active Workspace » Version: 5.0

cpe:2.3:a:siemens:teamcenter_active_workspace:5.0
Siemens » Teamcenter Active Workspace » Version: 5.1

cpe:2.3:a:siemens:teamcenter_active_workspace:5.1
Siemens » Teamcenter Active Workspace » Version: 5.2

cpe:2.3:a:siemens:teamcenter_active_workspace:5.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-41547

Products

Pricing

Contact Us