CVE-2021-21009

Adobe Campaign Classic Gold Standard 10 (and earlier), 20.3.1 (and earlier), 20.2.3 (and earlier), 20.1.3 (and earlier), 19.2.3 (and earlier) and 19.1.7 (and earlier) are affected by a server-side request forgery (SSRF) vulnerability. Successful exploitation could allow an attacker to use the Campaign instance to issue unauthorized requests to internal or external resources.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:adobe:campaign_classic:*:*:*:*:gold_standard:*:*:*
cpe:2.3:a:adobe:campaign_classic:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:campaign_classic:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:campaign_classic:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:campaign_classic:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:campaign_classic:*:*:*:*:*:*:*:*
OR cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:47

Type Values Removed Values Added
References () https://helpx.adobe.com/security/products/campaign/apsb21-04.html - Vendor Advisory () https://helpx.adobe.com/security/products/campaign/apsb21-04.html - Vendor Advisory

Information

Published : 2021-01-13 23:15

Updated : 2024-11-21 05:47


NVD link : CVE-2021-21009

Mitre link : CVE-2021-21009

CVE.ORG link : CVE-2021-21009


JSON object : View

Products Affected

linux

  • linux_kernel

adobe

  • campaign_classic

microsoft

  • windows
CWE
CWE-918

Server-Side Request Forgery (SSRF)