1. Home
  2. CVE Database
  3. CVE-2021-3285
MEDIUM · 5.3

CVE-2021-3285

jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509 certificates for HTTPS.

Vulnerability Description

jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509 certificates for HTTPS.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
LOW
Availability
NONE

Affected Products

VendorProductVersions
TiCode Composer Studio Intgrated Development Environment>= 8.0.0, < 10.1.1

Related Weaknesses (CWE)

CWE-295

References

FAQ

What is CVE-2021-3285?

CVE-2021-3285 is a vulnerability with a CVSS score of 5.3 (MEDIUM). jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509 certificates for HTTPS.

How severe is CVE-2021-3285?

CVE-2021-3285 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-3285?

Check the references section above for vendor advisories and patch information. Affected products include: Ti Code Composer Studio Intgrated Development Environment.