CVE-2021-32927

Summary

An attacker may be able to inject client-side JavaScript code on multiple instances within all versions of Uffizio GPS Tracker.

Affected Software

VendorProductVersion RangeStatus
UffizioGPS TrackerAllaffected

Weaknesses

  • CWE-79: CWE-79: Cross-site Scripting

Workarounds

Uffizio is aware of these vulnerabilities and has not supplied any mitigations or workarounds. Contact Uffizio for more information.

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References