Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2021-20511

MEDIUM
Published 2021-07-15T17:15:56.769692Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2021-20511. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.0
5.2
/10
CVSS:3.0/AC:L/A:N/AV:A/PR:H/UI:N/C:H/S:U/I:L/RC:C/E:U/RL:O
Base Score Metrics
Exploitability: N/A Impact: N/A

EPSS Score

v2025.03.14
0.004
probability
of exploitation in the wild

There is a 0.4% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-06-25
Exploit Probability
Percentile: 0.616
Higher than 61.6% of all CVEs

Attack Vector Metrics

Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED

Impact Metrics

Confidentiality
HIGH
Integrity
LOW
Availability
NONE

Description

IBM Security Verify Access Docker 10.0.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 198300.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

IBM

Security Verify Access Docker

Affected Versions:

10.0.0

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-c75f-q5vx-g76h

Advisory Details

IBM Security Verify Access Docker 10.0.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 198300.

CVSS Scoring

CVSS Score

5.0

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2021-20511
WEB https://exchange.xforce.ibmcloud.com/vulnerabilities/198300
WEB https://www.ibm.com/support/pages/node/6471895

Advisory provided by GitHub Security Advisory Database. Published: May 24, 2022, Modified: May 24, 2022

References

https://www.ibm.com/support/pages/node/6471895
https://exchange.xforce.ibmcloud.com/vulnerabilities/198300
Published: 2021-07-15T17:15:56.769692Z
Last Modified: 2024-09-17T00:20:41.657Z
Copied to clipboard!