Vulnerabilities > CVE-2021-37274 - Unspecified vulnerability in Kingdee KIS Cloud

CVSS 8.5 - HIGH

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

SINGLE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

kingdee

NVD

Published: 2021-09-27

Updated: 2022-07-12

Summary

Kingdee KIS Professional Edition has a privilege escalation vulnerability. Attackers can use the vulnerability to gain computer administrator rights via unspecified loopholes.

Vulnerable Configurations

Part	Description	Count
Application	Kingdee Kingdee KIS Cloud -	1

References

https://www.cnvd.org.cn/flaw/show/2740765
https://github.com/purple-WL/CNVD-2020-75301/issues/1