CVE-2021-32455 — MEDIUM (6.8)

Vulnerability Description

SITEL CAP/PRX firmware version 5.2.01, allows an attacker with access to the device´s network to cause a denial of service condition on the device. An attacker could exploit this vulnerability by sending HTTP requests massively.

CVSS Score

6.8

MEDIUM

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

HIGH

Affected Products

Vendor	Product	Versions
Sitel-Sa	Cap\/Prx Firmware	5.2.01
Sitel-Sa	Cap\/Prx	-

Related Weaknesses (CWE)

CWE-400

References

https://www.incibe-cert.es/en/early-warning/ics-advisories/sitel-capprx-vulnerabThird Party Advisory
https://www.incibe-cert.es/en/early-warning/ics-advisories/sitel-capprx-vulnerabThird Party Advisory

FAQ

What is CVE-2021-32455?

CVE-2021-32455 is a vulnerability with a CVSS score of 6.8 (MEDIUM). SITEL CAP/PRX firmware version 5.2.01, allows an attacker with access to the device´s network to cause a denial of service condition on the device. An attacker could exploit this vulnerability by send...

How severe is CVE-2021-32455?

CVE-2021-32455 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-32455?

Check the references section above for vendor advisories and patch information. Affected products include: Sitel-Sa Cap\/Prx Firmware, Sitel-Sa Cap\/Prx.