CVE-2021-21783

Summary

A code execution vulnerability exists in the WS-Addressing plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
n/aGeniviaGenivia gSOAP 2.8.109, Genivia gSOAP 2.8.110affected

Weaknesses

  • CWE-680: CWE-680: Integer Overflow to Buffer Overflow

ADP Enrichment

CVE Program Container

Additional References

References