CVE-2021-42786

It was discovered that the SteelCentral AppInternals Dynamic Sampling Agent (DSA) has Remote Code Execution vulnerabilities in multiple instances of the API requests. The affected endpoints do not have any input validation of the user's input that allowed a malicious payload to be injected.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:riverbed:steelcentral_appinternals_dynamic_sampling_agent:*:*:*:*:*:*:*:*
cpe:2.3:a:riverbed:steelcentral_appinternals_dynamic_sampling_agent:*:*:*:*:*:*:*:*
cpe:2.3:a:riverbed:steelcentral_appinternals_dynamic_sampling_agent:10.0.0:*:*:*:*:*:*:*

History

21 Nov 2024, 06:28

Type Values Removed Values Added
References () https://aternity.force.com/customersuccess/s/article/Remote-Code-Execution-at-AgentControllerServlet-CVE-2021-42786 - Third Party Advisory () https://aternity.force.com/customersuccess/s/article/Remote-Code-Execution-at-AgentControllerServlet-CVE-2021-42786 - Third Party Advisory

Information

Published : 2022-03-10 17:44

Updated : 2024-11-21 06:28


NVD link : CVE-2021-42786

Mitre link : CVE-2021-42786

CVE.ORG link : CVE-2021-42786


JSON object : View

Products Affected

riverbed

  • steelcentral_appinternals_dynamic_sampling_agent
CWE
CWE-20

Improper Input Validation