CVE-2021-42701

CWE-471: MODIFICATION OF ASSUMED-IMMUTABLE DATA (MAID)
An attacker could prepare a specially crafted project file that, if opened, would attempt to connect to the cloud and trigger a man in the middle (MiTM) attack. This could allow an attacker to obtain credentials and take over the user’s cloud account.

Risk Information

  • CVE ID
  • CVE-2021-42701
  • Vendor
  • AzeoTech
  • Product
  • DAQFactory
  • CVSS v3
  • 5.0