Vulnerabilities > CVE-2021-33558 - Unspecified vulnerability in BOA 0.94.13

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

boa

NVD

Published: 2021-05-27

Updated: 2024-04-11

Summary

Boa 0.94.13 allows remote attackers to obtain sensitive information via a misconfiguration involving backup.html, preview.html, js/log.js, log.html, email.html, online-users.html, and config.js. NOTE: multiple third parties report that this is a site-specific issue because those files are not part of Boa.

Vulnerable Configurations

Part	Description	Count
Application	Boa BOA BOA 0.94.13	1

References

https://github.com/mdanzaruddin/CVE-2021-33558.
https://sourceforge.net/projects/boa/files/boa/0.94.13/
https://github.com/mdanzaruddin/CVE-2021-33558./issues/1

Summary

Vulnerable Configurations

Related news

References