FAIL › dossier

Accellion vendor

4
failure events
1
zero-days
2
RCEs
4
on KEV
4
critical
95
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 4 events

DateEventSevFlagsShameSummary
2021-11-03 CVE-2021-27104 critical ⚡RCE ⌖KEV 95 Accellion FTA contains an OS command injection vulnerability exploited via a crafted POST request to various admin endpoints.
2021-11-03 CVE-2021-27102 critical ⚡RCE ⌖KEV 95 Accellion FTA contains an OS command injection vulnerability exploited via a local web service call.
2021-11-03 CVE-2021-27101 critical ◐0day ⌖KEV 80 Accellion FTA contains a SQL injection vulnerability exploited via a crafted host header in a request to document_root.html.
2021-11-03 CVE-2021-27103 critical ⌖KEV 80 Accellion FTA contains a server-side request forgery (SSRF) vulnerability exploited via a crafted POST request to wmProgressstat.html.

Sentiment · trusted sources

  • synthesis neutral +0.00
    No sentiment expressed; only technical facts and catalog listings.
  • synthesis neutral +0.00
    No sentiment expressed; sources are CVE databases and aggregators with no commentary on vendor handling.
  • synthesis severe-fallout -0.60
    Vulnerability disclosed with minimal context, no praise for handling.
  • synthesis neutral +0.00
    No sentiment expressed; sources are technical databases or generic pages without commentary on Accellion's handling.
  • SentinelOne ↗ neutral +0.00
    Neutral; unrelated SentinelOne page.
    “Vulnerability Database | SentinelOne”
  • www.cvefind.com ↗ neutral +0.00
    Neutral; generic CVE database.
    “CVE, short for Common Vulnerabilities and Exposures, is a list of publicly disclosed computer security flaws.”
  • cvefeed.io ↗ neutral +0.00
    Neutral; generic KEV catalog.
    “CISA's Known Exploited Vulnerabilities (KEV) catalog is the authoritative list of security flaws that have been confirmed exploited in real-world attacks.”
  • cooey ↗ neutral +0.00
    Neutral; technical fact only.
    “Accellion FTA contains a SQL injection vulnerability exploited via a crafted host header in a request to document_root.html.”
  • SentinelOne ↗ neutral +0.00
    Neutral; no mention of Accellion or CVE-2021-27101.
  • www.cvefind.com ↗ neutral +0.00
    Neutral; no mention of Accellion or CVE-2021-27101.
  • CISA ↗ neutral +0.00
    Neutral; no mention of Accellion or CVE-2021-27101.
  • cvefeed.io ↗ neutral +0.00
    Neutral; no mention of Accellion or CVE-2021-27101.
  • app.opencve.io ↗ neutral +0.00
    Neutral; no mention of Accellion or CVE-2021-27101.
  • NVD ↗ neutral +0.00
    Neutral; no mention of Accellion or CVE-2021-27101.
  • cooey ↗ neutral +0.00
    Neutral; NVD entry states facts without sentiment.
    “Accellion FTA contains an OS command injection vulnerability exploited via a local web service call.”
  • cve.akaoma.com ↗ neutral +0.00
    Neutral; CVE aggregator page with no vendor commentary.
  • www.cvefind.com ↗ neutral +0.00
    Neutral; CVE database site with no vendor commentary.
  • app.opencve.io ↗ neutral +0.00
    Neutral; CVE database site with no vendor commentary.
  • SentinelOne ↗ neutral +0.00
    Neutral; Vendor security page with no CVE commentary.
  • cvefeed.io ↗ neutral +0.00
    Neutral; CVE aggregator page with no vendor commentary.
  • cooey ↗ severe-fallout -0.60
    Neutral disclosure, no commendation.
    “Accellion FTA contains a server-side request forgery (SSRF) vulnerability exploited via a crafted POST request to wmProgressstat.html.”
  • cooey ↗ neutral +0.00
    Neutral; technical description only.
    “Accellion FTA contains an OS command injection vulnerability exploited via a crafted POST request to various admin endpoints.”
  • NVD ↗ neutral +0.00
    Neutral; unrelated CVE page.
    “NVD - CVE-2026-56164”
  • CISA ↗ neutral +0.00
    Neutral; generic CISA page.
    “CISA Adds Four Known Exploited Vulnerabilities to Catalog”