CVE-2021-37270
First published: Mon Sep 27 2021(Updated: )
There is an unauthorized access vulnerability in the CMS Enterprise Website Construction System 5.0. Attackers can use this vulnerability to directly access the specified background path without logging in to the background to obtain the background administrator authority.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| S-cms Cms Enterprise Website Construction System | =5.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-37270?
CVE-2021-37270 is an unauthorized access vulnerability in the CMS Enterprise Website Construction System 5.0.
What is the severity of CVE-2021-37270?
The severity of CVE-2021-37270 is critical with a CVSS score of 9.8.
How does CVE-2021-37270 affect the CMS Enterprise Website Construction System?
CVE-2021-37270 allows attackers to directly access the specified background path without logging into the background, thereby obtaining the background administrator authority.
How can I fix CVE-2021-37270?
Currently, there is no known fix for CVE-2021-37270. It is recommended to implement strong access controls and monitor for any unauthorized access attempts.
- collector/nvd-index
- agent/softwarecombine
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/author
- agent/first-publish-date
- agent/tags
- agent/description
- agent/event
- vendor/s-cms
- canonical/s-cms cms enterprise website construction system
- version/s-cms cms enterprise website construction system/5.0