CVE-2021-45916 — LOW (3.5) — White Hats Nepal

Q: How severe is CVE-2021-45916?

CVE-2021-45916 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2021-45916?

Check the references section above for vendor advisories and patch information. Affected products include: Smr Shenwang Endpoint Protection Security System.

Vulnerability Description

The programming function of Shockwall system has an improper input validation vulnerability. An authenticated attacker within the local area network can send malicious response to the server to disrupt the service partially.

CVSS Score

3.5

LOW

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

LOW

Affected Products

Vendor	Product	Versions
Smr	Shenwang Endpoint Protection Security System	< 7.20.0401

Related Weaknesses (CWE)

CWE-20

References

https://www.twcert.org.tw/tw/cp-132-5432-b9074-1.htmlThird Party Advisory
https://www.twcert.org.tw/tw/cp-132-5432-b9074-1.htmlThird Party Advisory

FAQ

What is CVE-2021-45916?

CVE-2021-45916 is a vulnerability with a CVSS score of 3.5 (LOW). The programming function of Shockwall system has an improper input validation vulnerability. An authenticated attacker within the local area network can send malicious response to the server to disrup...

How severe is CVE-2021-45916?

CVE-2021-45916 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-45916?

Check the references section above for vendor advisories and patch information. Affected products include: Smr Shenwang Endpoint Protection Security System.