← Volver a CVEs

CVE-2021-21433

CRITICAL

9.9

Descripcion

Discord Recon Server is a bot that allows you to do your reconnaissance process from your Discord. Remote code execution in version 0.0.1 would allow remote users to execute commands on the server resulting in serious issues. This flaw is patched in 0.0.2.

Detalles CVE

Puntuacion CVSS v3.19.9

SeveridadCRITICAL

Vector CVSSCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H

Vector de ataqueNETWORK

ComplejidadLOW

Privilegios requeridosLOW

Interaccion usuarioNONE

Publicado4/9/2021

Ultima modificacion11/21/2024

Fuentenvd

Avistamientos honeypot0

Productos afectados

demon1a:discord-recon

Debilidades (CWE)

CWE-94CWE-78

Referencias

https://github.com/DEMON1A/Discord-Recon/commit/26e2a084679679cccdeeabbb6889ce120eff7e50(security-advisories@github.com)

https://github.com/DEMON1A/Discord-Recon/issues/6(security-advisories@github.com)

https://github.com/DEMON1A/Discord-Recon/security/advisories/GHSA-65fm-5x64-gv9x(security-advisories@github.com)

https://github.com/DEMON1A/Discord-Recon/commit/26e2a084679679cccdeeabbb6889ce120eff7e50(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/DEMON1A/Discord-Recon/issues/6(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/DEMON1A/Discord-Recon/security/advisories/GHSA-65fm-5x64-gv9x(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.