Security Advisory

CVE-2021-42120

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-11-30 11:28:12
Last updated 2024-08-04 03:30:36
Assigner NCSC.ch
State PUBLISHED

Description

Insufficient Input Validation in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version <= 7.1.27 on all object attributes allows an authenticated remote attacker with Object Modification privileges to insert arbitrarily long strings, eventually leading to exhaustion of the underlying resource.