CVE-2021-33207: Critical severity software ag mashzone nextgen vulnerability

Q: What is CVE-2021-33207?

CVE-2021-33207 is a critical vulnerability in MashZone NextGen software that allows the deserialization of untrusted data when receiving a HTTP response with a 570 status code.

Q: What is the severity of CVE-2021-33207?

CVE-2021-33207 has a severity rating of 9.8 (critical).

Q: How does CVE-2021-33207 affect MashZone NextGen?

CVE-2021-33207 affects MashZone NextGen versions up to and including 10.7 GA.

Q: What can an attacker do with CVE-2021-33207?

By exploiting CVE-2021-33207, an attacker can execute arbitrary code or perform Denial of Service (DoS) attacks on vulnerable MashZone NextGen installations.

Q: How can I fix CVE-2021-33207?

To fix CVE-2021-33207, it is recommended to upgrade MashZone NextGen to version 10.8 or apply the necessary patches provided by SoftwareAG.

Published Apr 5, 2022

Updated

The HTTP client in MashZone NextGen through 10.7 GA deserializes untrusted data when it gets an HTTP response with a 570 status code.

Affected Software

1 affected component

Softwareag Mashzone Nextgen<=10.7

Event History

Apr 5, 2022

CVE Published

via MITRE·02:01 AM

Data Sourced

via MITRE·02:01 AM

Description

Frequently Asked Questions

What is CVE-2021-33207?

CVE-2021-33207 is a critical vulnerability in MashZone NextGen software that allows the deserialization of untrusted data when receiving a HTTP response with a 570 status code.

What is the severity of CVE-2021-33207?

CVE-2021-33207 has a severity rating of 9.8 (critical).

How does CVE-2021-33207 affect MashZone NextGen?

CVE-2021-33207 affects MashZone NextGen versions up to and including 10.7 GA.

What can an attacker do with CVE-2021-33207?

By exploiting CVE-2021-33207, an attacker can execute arbitrary code or perform Denial of Service (DoS) attacks on vulnerable MashZone NextGen installations.

How can I fix CVE-2021-33207?