CVE-2021-27132 · Vexday

CVE-2021-27132

EPSS 16.7%

SerComm AG Combo VD625 AGSOT_2.1.0 devices allow CRLF injection (for HTTP header injection) in the download function via the Content-Disposition header.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://cybertuz.com/blog/post/crlf-injection-CVE-2021-27132 http://sercomm.com