AIMANAGER before B115 on MONITORAPP Application Insight Web Application Firewall (AIWAF) devices with Manager 2.1.0 allows OS Command Injection because of missing input validation on one of the parameters of an HTTP request.
References
Link | Resource |
---|---|
https://github.com/fireeye/Vulnerability-Disclosures/blob/master/FEYE-2021-0022/FEYE-2021-0022.md | Third Party Advisory |
https://github.com/monitorapp-aicc/report/wiki/CVE-2021-36982 | Third Party Advisory |
https://www.monitorapp.com/waf/ | Product Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-08-12T17:30:56
Updated: 2021-08-12T17:30:55
Reserved: 2021-07-20T00:00:00
Link: CVE-2021-36982
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-08-12T18:15:10.337
Modified: 2021-08-24T15:55:55.800
Link: CVE-2021-36982
JSON object: View
Redhat Information
No data.
CWE