CVE-2021-21815

EPSS 0.06% · P19 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-21815

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A stack-based buffer overflow vulnerability exists in the command-line-parsing HandleFileArg functionality of AT&T Labs' Xmill 0.7. Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern is passed directly to strcpy copying the path provided by the user into a staticly sized buffer without any length checks resulting in a stack-buffer overflow. An attacker can provide malicious input to trigger this vulnerability.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

AT&T Labs Xmill 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

AT&T Labs Xmill是美国AT&T Labs实验室的一种用于高效压缩 XML 数据的新工具。 AT&T Labs Xmill存在缓冲区错误漏洞，该漏洞的存在是由于strcpy中的命令行解析HandleFileArg功能中的边界错误。本地用户可以使用一个特别制作的命令行参数，触发内存损坏并在目标系统上执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	AT&T	AT&T Labs Xmill 0.7	-

II. Public POCs for CVE-2021-21815

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-21815

请登录查看更多情报信息。

Same Patch Batch · n/a · 2021-08-13 · 57 CVEs total

CVE-2021-31399	4.6 MEDIUM	2N Access Unit 信任管理问题漏洞
CVE-2020-18756		MAC1100 PLC 缓冲区错误漏洞
CVE-2021-38302		TYPO3 SQL注入漏洞
CVE-2020-21066		Bento4 缓冲区错误漏洞
CVE-2021-21829		AT&T Labs Xmill 缓冲区错误漏洞
CVE-2021-21830		AT&T Labs Xmill 缓冲区错误漏洞
CVE-2021-21812		AT&T Labs Xmill 缓冲区错误漏洞
CVE-2020-18759		MAC1100 PLC 信息泄露漏洞
CVE-2020-18758		MAC1100 PLC 命令注入漏洞
CVE-2020-18757		MAC1100 PLC 安全漏洞
CVE-2021-36785		TYPO3 跨站脚本漏洞
CVE-2020-18754		MAC1100 PLC 信息泄露漏洞
CVE-2020-18753		MAC1100 PLC 安全漏洞
CVE-2021-36792		TYPO3 安全漏洞
CVE-2021-36791		TYPO3 信息泄露漏洞
CVE-2021-36790		TYPO3 跨站脚本漏洞
CVE-2021-36789		TYPO3 SQL注入漏洞
CVE-2021-36380		Sunhillo SureLine 操作系统命令注入漏洞
CVE-2021-37028		HG8045Q 操作系统命令注入漏洞
CVE-2021-38553		Hashicorp HashiCorp Vault 安全特征问题漏洞

Showing top 20 of 57 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: AT&T

Same vendor: n/a

V. Comments for CVE-2021-21815

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-21815

I. Basic Information for CVE-2021-21815

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-21815

III. Intelligence Information for CVE-2021-21815

Same Patch Batch · n/a · 2021-08-13 · 57 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2021-21815

Leave a comment