CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-41551

Leostream Connection Broker 9.0.40.17 allows administrators to conduct directory traversal attacks by uploading z ZIP file that contains a symbolic link.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.4%

CVSS Severity

CVSS v3 Score 4.9

CVSS v2 Score 4.0

References

https://leostream.com/wp-content/uploads/2018/11/Leostream_release_notes.pdf
https://www.leostream.com/resource/leostream-connection-broker-9-0/
https://leostream.com/wp-content/uploads/2018/11/Leostream_release_notes.pdf
https://www.leostream.com/resource/leostream-connection-broker-9-0/

Products affected by CVE-2021-41551

Leostream » Connection Broker » Version: 9.0.40.17

cpe:2.3:a:leostream:connection_broker:9.0.40.17

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-41551

Products

Pricing

Contact Us