CVE-2021-22028

EPSS 0.47% · P65 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-22028

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

In versions of Greenplum database prior to 5.28.6 and 6.14.0, greenplum database contains a file path traversal vulnerability leading to information disclosure from the file system. A malicious user can read/write information from the file system using this vulnerability.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

对路径名的限制不恰当(路径遍历)

Source: NVD (National Vulnerability Database)

Vulnerability Title

Greenplum Database 路径遍历漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Greenplum Database是一个基于 PostgreSql 的高级、功能齐全的开源数据仓库。用于分析大规模并行 PostgreSql。 Greenplum Database 5.28.6和6.14.0之前版本存在安全漏洞，该漏洞源于Greenplum数据库对于包含路径的请求缺少限制与过滤，导致文件系统信息泄露。恶意用户可以使用此漏洞从文件系统中读写信息。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	gpfdist (Greenplum)	gpfdist (Greenplum) versions 6.x.0 prior to 6.14.0 and 5.28.x prior to 5.28.6	-

II. Public POCs for CVE-2021-22028

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-22028

请登录查看更多情报信息。

Same Patch Batch · n/a · 2021-11-19 · 35 CVEs total

CVE-2021-23433	5.9 MEDIUM	Prototype Pollution
CVE-2021-37592		Suricata 缓冲区错误漏洞
CVE-2021-29325		Moddable SDK 缓冲区错误漏洞
CVE-2021-29323		Moddable SDK 缓冲区错误漏洞
CVE-2021-29324		Moddable SDK 缓冲区错误漏洞
CVE-2021-3962		ImageMagick 资源管理错误漏洞
CVE-2021-22030		Greenplum Database 日志信息泄露漏洞
CVE-2021-22053		VMware Spring Cloud Netflix 代码注入漏洞
CVE-2021-33850		WordPress 跨站脚本漏洞
CVE-2021-29326		Moddable SDK 缓冲区错误漏洞
CVE-2021-41435		ASUS routers 安全漏洞
CVE-2021-41436		ASUS routers 环境问题漏洞
CVE-2021-44033		Ionic Identity Vault 安全漏洞
CVE-2021-44025		Roundcube Webmail 跨站脚本漏洞
CVE-2021-44026		Roundcube Webmail SQL注入漏洞
CVE-2021-21898		LibreCAD 缓冲区错误漏洞
CVE-2021-21899		LibreCAD 缓冲区错误漏洞
CVE-2021-21900		LibreCAD 资源管理错误漏洞
CVE-2021-29327		Moddable SDK 缓冲区错误漏洞
CVE-2021-29328		Moddable SDK 缓冲区错误漏洞

Showing top 20 of 35 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same vendor: n/a

Same weakness: CWE-22

V. Comments for CVE-2021-22028

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-22028

I. Basic Information for CVE-2021-22028

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-22028

III. Intelligence Information for CVE-2021-22028

Same Patch Batch · n/a · 2021-11-19 · 35 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2021-22028

Leave a comment