FAIL › dossier
Accellion vendor
4
failure events
1
zero-days
2
RCEs
4
on KEV
4
critical
95
worst shame
Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.
Failure history 4 events
| Date | Event | Sev | Flags | Shame | Summary |
|---|---|---|---|---|---|
| 2021-11-03 | CVE-2021-27104 | critical | ⚡RCE ⌖KEV | 95 | Accellion FTA contains an OS command injection vulnerability exploited via a crafted POST request to various admin endpoints. |
| 2021-11-03 | CVE-2021-27102 | critical | ⚡RCE ⌖KEV | 95 | Accellion FTA contains an OS command injection vulnerability exploited via a local web service call. |
| 2021-11-03 | CVE-2021-27101 | critical | ◐0day ⌖KEV | 80 | Accellion FTA contains a SQL injection vulnerability exploited via a crafted host header in a request to document_root.html. |
| 2021-11-03 | CVE-2021-27103 | critical | ⌖KEV | 80 | Accellion FTA contains a server-side request forgery (SSRF) vulnerability exploited via a crafted POST request to wmProgressstat.html. |
Sentiment · trusted sources
-
synthesis neutral +0.00No sentiment expressed; only technical facts and catalog listings.
-
synthesis neutral +0.00No sentiment expressed; sources are CVE databases and aggregators with no commentary on vendor handling.
-
synthesis severe-fallout -0.60Vulnerability disclosed with minimal context, no praise for handling.
-
synthesis neutral +0.00No sentiment expressed; sources are technical databases or generic pages without commentary on Accellion's handling.
-
Neutral; unrelated SentinelOne page.
“Vulnerability Database | SentinelOne”
-
Neutral; generic CVE database.
“CVE, short for Common Vulnerabilities and Exposures, is a list of publicly disclosed computer security flaws.”
-
Neutral; generic KEV catalog.
“CISA's Known Exploited Vulnerabilities (KEV) catalog is the authoritative list of security flaws that have been confirmed exploited in real-world attacks.”
-
Neutral; technical fact only.
“Accellion FTA contains a SQL injection vulnerability exploited via a crafted host header in a request to document_root.html.”
-
Neutral; no mention of Accellion or CVE-2021-27101.
-
Neutral; no mention of Accellion or CVE-2021-27101.
-
Neutral; no mention of Accellion or CVE-2021-27101.
-
Neutral; no mention of Accellion or CVE-2021-27101.
-
Neutral; no mention of Accellion or CVE-2021-27101.
-
Neutral; no mention of Accellion or CVE-2021-27101.
-
Neutral; NVD entry states facts without sentiment.
“Accellion FTA contains an OS command injection vulnerability exploited via a local web service call.”
-
Neutral; CVE aggregator page with no vendor commentary.
-
Neutral; CVE database site with no vendor commentary.
-
Neutral; CVE database site with no vendor commentary.
-
Neutral; Vendor security page with no CVE commentary.
-
Neutral; CVE aggregator page with no vendor commentary.
-
Neutral disclosure, no commendation.
“Accellion FTA contains a server-side request forgery (SSRF) vulnerability exploited via a crafted POST request to wmProgressstat.html.”
-
Neutral; technical description only.
“Accellion FTA contains an OS command injection vulnerability exploited via a crafted POST request to various admin endpoints.”
-
Neutral; unrelated CVE page.
“NVD - CVE-2026-56164”
-
Neutral; generic CISA page.
“CISA Adds Four Known Exploited Vulnerabilities to Catalog”