Skip to main content

Infrabox

2 CVEs product

Monthly

CVE-2021-33706 MEDIUM This Month

Due to improper input validation in InfraBox, logs can be modified by an authenticated user. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Infrabox
NVD GitHub
CVSS 3.1
4.3
EPSS
0.6%
CVE-2021-33668 HIGH This Week

Due to improper input sanitization, specially crafted LDAP queries can be injected by an unauthenticated user. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection Infrabox
NVD GitHub
CVSS 3.1
7.5
EPSS
1.1%
EPSS 1% CVSS 4.3
MEDIUM This Month

Due to improper input validation in InfraBox, logs can be modified by an authenticated user. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Infrabox
NVD GitHub
EPSS 1% CVSS 7.5
HIGH This Week

Due to improper input sanitization, specially crafted LDAP queries can be injected by an unauthenticated user. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Code Injection Infrabox
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy