Exposures › CVE-2021-27101
CVE-2021-27101
Severity
critical · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2021-11-03
Reference
◐ zero-day
⌖ exploited in the wild
shame 80/100
ransomwareexploited-in-wildzero-day
Accellion FTA contains a SQL injection vulnerability exploited via a crafted host header in a request to document_root.html.
Players implicated
Description
Accellion FTA contains a SQL injection vulnerability exploited via a crafted host header in a request to document_root.html.
Sentiment · trusted sources
-
synthesis neutral +0.00No sentiment expressed; only technical facts and catalog listings.
-
Neutral; technical fact only.
“Accellion FTA contains a SQL injection vulnerability exploited via a crafted host header in a request to document_root.html.”
-
Neutral; no mention of Accellion or CVE-2021-27101.
-
Neutral; no mention of Accellion or CVE-2021-27101.
-
Neutral; no mention of Accellion or CVE-2021-27101.
-
Neutral; no mention of Accellion or CVE-2021-27101.
-
Neutral; no mention of Accellion or CVE-2021-27101.
-
Neutral; no mention of Accellion or CVE-2021-27101.
Affected FedRAMP products 1 in the catalog
| Product | Provider | Status | Match |
|---|---|---|---|
| Kiteworks Federal Cloud | Accellion USA, LLC. | Authorized | vendor-exact · 0.90 |