Impact

3 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2021-35485 HIGH This Week

Impact versions up to 19.11.2.10-20210118042150283 is affected by unrestricted upload of file with dangerous type (CVSS 8.0).

File Upload Impact
NVD
CVSS 3.1
8.0
EPSS
0.0%
CVE-2021-35484 HIGH This Week

Nokia IMPACT through 19.11.2.10-20210118042150283 allows an authenticated user to perform a Time-based Boolean Blind SQL Injection attack on the endpoint /ui/rest-proxy/campaign/statistic (for the View Campaign page) via the sortColumn HTTP GET parameter. [CVSS 8.2 HIGH]

SQLi Impact
NVD
CVSS 3.1
8.2
EPSS
0.0%
CVE-2021-35483 MEDIUM This Month

Impact versions up to 19.11.2.10-20210118042150283 is affected by cross-site scripting (xss) (CVSS 4.1).

XSS Impact
NVD
CVSS 3.1
4.1
EPSS
0.0%
CVE-2021-35485
EPSS 0% CVSS 8.0
HIGH This Week

Impact versions up to 19.11.2.10-20210118042150283 is affected by unrestricted upload of file with dangerous type (CVSS 8.0).

File Upload Impact
NVD
CVE-2021-35484
EPSS 0% CVSS 8.2
HIGH This Week

Nokia IMPACT through 19.11.2.10-20210118042150283 allows an authenticated user to perform a Time-based Boolean Blind SQL Injection attack on the endpoint /ui/rest-proxy/campaign/statistic (for the View Campaign page) via the sortColumn HTTP GET parameter. [CVSS 8.2 HIGH]

SQLi Impact
NVD
CVE-2021-35483
EPSS 0% CVSS 4.1
MEDIUM This Month

Impact versions up to 19.11.2.10-20210118042150283 is affected by cross-site scripting (xss) (CVSS 4.1).

XSS Impact
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy