First published: Wed Jun 09 2021(Updated: )
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Cloverdx Cloverdx | <5.7.1 | |
Cloverdx Cloverdx | >=5.8.0<5.8.2 | |
Cloverdx Cloverdx | >=5.9.0<5.9.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-29995 is a Cross Site Request Forgery (CSRF) vulnerability in Server Console in CloverDX through 5.9.0.
CVE-2021-29995 allows remote attackers to execute any action as the logged-in user, including script execution.
CloverDX versions 5.7.1, 5.8.0 to 5.8.2, and 5.9.0 are affected by CVE-2021-29995.
CVE-2021-29995 is resolved in CloverDX versions 5.10, 5.9.1, 5.8.2, and 5.7.1.
CVE-2021-29995 has a severity rating of 8.8 (high).