CVE-2021-27463
Published: 20 May 2021
Summary
CVE-2021-27463 is a medium-severity Use of Persistent Cookies Containing Sensitive Information (CWE-539) vulnerability in Emerson X-Stream Enhanced Xegp Firmware. Its CVSS base score is 5.3 (Medium).
Operationally, ranked at the 37.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2021-14217
Vulnerability details
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected applications utilize persistent cookies where the session cookie attribute is not properly invalidated, allowing an attacker to intercept the cookies and gain access to…
more
sensitive information.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.