Vulnerabilities > CVE-2021-38417 - Unspecified vulnerability in Visam Vbase Web-Remote 11.6.0.6

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

visam

NVD

Published: 2022-07-27

Updated: 2022-08-04

Summary

VISAM VBASE version 11.6.0.6 is vulnerable to improper access control via the web-remote endpoint, which may allow an unauthenticated user viewing access to folders and files in the directory listing.

Vulnerable Configurations

Part	Description	Count
Application	Visam Visam Vbase WEB Remote 11.6.0.6	1

References

https://www.cisa.gov/uscert/ics/advisories/icsa-21-308-01