CVE-2021-22771
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-22771
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A CWE-1236: Improper Neutralization of Formula Elements in a CSV File vulnerability exists in Easergy T300 with firmware V2.7.1 and older that would allow arbitrary command execution.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
CWE-1236
Source: NVD (National Vulnerability Database)
Vulnerability Title
Schneider Electric Easergy T300 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Schneider Electric Easergy T300是法国施耐德电气(Schneider Electric)公司的一款用于电力行业的远程终端单元。 Schneider Electric Easergy T300 中存在安全漏洞,该漏洞源于产品在中和数据过程中存在错误。攻击者可通过该漏洞执行任意命令。以下产品及版本受到影响:Schneider Electric Easergy T300 V2.7.1及之前版本。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | Easergy T300 with firmware V2.7.1 and older | Easergy T300 with firmware V2.7.1 and older | - |
II. Public POCs for CVE-2021-22771
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-22771
请登录查看更多情报信息。
Same Patch Batch · n/a · 2021-07-21 · 67 CVEs total
| CVE-2021-23409 | 7.5 HIGH | Denial of Service (DoS) |
| CVE-2021-23411 | 5.4 MEDIUM | Cross-site Scripting (XSS) |
| CVE-2021-23408 | 5.4 MEDIUM | Prototype Pollution |
| CVE-2020-19498 | libheif 安全漏洞 | |
| CVE-2020-20262 | MikroTik RouterOS 代码问题漏洞 | |
| CVE-2020-19497 | MAT File I/O Library 输入验证错误漏洞 | |
| CVE-2020-19470 | Modesty Pdf2json 代码问题漏洞 | |
| CVE-2020-19469 | Modesty Pdf2json 缓冲区错误漏洞 | |
| CVE-2020-19468 | Modesty Pdf2json 代码问题漏洞 | |
| CVE-2020-19467 | Modesty Pdf2json 资源管理错误漏洞 | |
| CVE-2020-19466 | PDF2JSON 缓冲区错误漏洞 | |
| CVE-2020-19465 | Modesty Pdf2json 缓冲区错误漏洞 | |
| CVE-2020-19464 | PDF2JSON 缓冲区错误漏洞 | |
| CVE-2020-19463 | Modesty Pdf2json 缓冲区错误漏洞 | |
| CVE-2020-22150 | Piwigo 跨站脚本漏洞 | |
| CVE-2020-22148 | Piwigo 跨站脚本漏洞 | |
| CVE-2020-19609 | artifex mupdf 缓冲区错误漏洞 | |
| CVE-2020-20221 | MikroTik RouterOS 资源管理错误漏洞 | |
| CVE-2021-37155 | Wolfssl 安全漏洞 | |
| CVE-2021-37220 | MuPDF 缓冲区错误漏洞 |
Showing top 20 of 67 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-6638
PostgreSQL REFRESH PUBLICATION allows SQL injection via tabl - CVE-2026-6575
PostgreSQL pg_restore_attribute_stats accepts values that ca - CVE-2026-6637
PostgreSQL refint allows stack buffer overflow and SQL injec - CVE-2026-6479
PostgreSQL SSL/GSS init causes denial of service, via uncont - CVE-2026-6478
PostgreSQL discloses MD5-hashed passwords via covert timing
Same weakness: CWE-1236
- CVE-2026-35157
Dell ECS和Dell ObjectScale 安全漏洞 - CVE-2026-42267
Kimai: Formula Injection via tag names in XLSX export - CVE-2026-27644
traccar allows CSV formula injection via exported position d - CVE-2023-54348
ERPGo SaaS 3.9 CSV Injection via Vendor Creation - CVE-2026-39424
MaxKB has CSV Injection in its Application Chat Export Funct
V. Comments for CVE-2021-22771
No comments yet