CVE-2021-29681
Medium
Published: 21 May 2021
Published
21 May 2021
Modified
21 November 2024
KEV Added
—
Patch
—
CVSS Score v3.1
5.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
0.0019
40.5th percentile
Risk Priority
11
60% EPSS · 20% KEV · 20% CVSS
Summary
CVE-2021-29681 is a medium-severity an unspecified weakness vulnerability in Ibm Infosphere Information Server. Its CVSS base score is 5.3 (Medium).
Operationally, ranked at the 40.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2021-16155
Vulnerability details
IBM InfoSphere Information Server 11.7 could allow an attacker to obtain sensitive information by injecting parameters into an HTML query. This information could be used in further attacks against the system. IBM X-Force ID: 199918.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
ibm
infosphere information server
11.7
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.