First published: Mon Oct 04 2021(Updated: )
In Akamai EAA (Enterprise Application Access) Client before 2.3.1, 2.4.x before 2.4.1, and 2.5.x before 2.5.3, an unquoted path may allow an attacker to hijack the flow of execution.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Akamai Enterprise Application Access | <2.3.1 | |
Akamai Enterprise Application Access | >=2.4.0<2.4.1 | |
Akamai Enterprise Application Access | >=2.5.0<2.5.3 | |
Microsoft Windows |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-40683 is a vulnerability found in Akamai EAA (Enterprise Application Access) Client before version 2.3.1, 2.4.x before 2.4.1, and 2.5.x before 2.5.3 that allows an attacker to hijack the flow of execution by exploiting an unquoted path.
CVE-2021-40683 allows an attacker to hijack the flow of execution in Akamai EAA Client, potentially leading to privilege escalation.
CVE-2021-40683 has a severity rating of 7.8 (high).
CVE-2021-40683 affects Akamai EAA Client versions before 2.3.1, 2.4.x before 2.4.1, and 2.5.x before 2.5.3.
To fix CVE-2021-40683, users should upgrade to Akamai EAA Client version 2.3.1, 2.4.1, or 2.5.3, depending on the affected version.