CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Alfresco: >> Alfresco Content Services >> 7.0.0.1 Security Vulnerabilities

CVE-2021-41790

An issue was discovered in Hyland org.alfresco:alfresco-content-services through 7.0.1.2. Script Action execution allows executing scripts uploaded outside of the Data Dictionary. This could allow a logged-in attacker to execute arbitrary code inside a sandboxed environment.

CVSS Score

8.8

EPSS Score

0.009

Published

2021-10-21

Page 1

Vulnerabilities

Vulnerable Software

Alfresco: >> Alfresco Content Services >> 7.0.0.1 Security Vulnerabilities

Products

Pricing

Contact Us