Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2021-37463

EPSS 0.21% · P43
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-37463

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
In NCH Quorum v2.03 and earlier, XSS exists via User Display Name (stored).
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
NCH Quorum 跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
NCH Quorum是美国NCH公司的一款电话会议服务器软件。可以将任何电脑变成一个电话会议服务器。调用者拨号进入服务器参加电话会议。 NCH Quorum 2.03及之前版本存在跨站脚本漏洞,攻击者可通过用户名字段来利用该漏洞。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2021-37463

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2021-37463

登录查看更多情报信息。

Proof of Concept for CVE-2021-37463 (1)

Other References for CVE-2021-37463 (1)

Same Patch Batch · n/a · 2021-07-25 · 33 CVEs total

CVE-2021-234135.3 MEDIUMDenial of Service (DoS)
CVE-2021-37446NCH Quorum 路径遍历漏洞
CVE-2021-37453NCH Axon PBX 跨站脚本漏洞
CVE-2021-37452NCH Quorum 访问控制错误漏洞
CVE-2021-37451NCH IVM Attendant 跨站脚本漏洞
CVE-2021-37450NCH IVM Attendant 跨站脚本漏洞
CVE-2021-37449NCH IVM Attendant 跨站脚本漏洞
CVE-2021-37448NCH IVM Attendant 跨站脚本漏洞
CVE-2021-37447NCH Quorum 路径遍历漏洞
CVE-2021-37454NCH Axon PBX 跨站脚本漏洞
CVE-2021-37445NCH Quorum 路径遍历漏洞
CVE-2021-37444NCH IVM Attendant 代码问题漏洞
CVE-2021-37443NCH IVM assistant 路径遍历漏洞
CVE-2021-37442NCH IVM Attendant 路径遍历漏洞
CVE-2021-37441NCH Axon PBX 路径遍历漏洞
CVE-2021-37440NCH Axon PBX 路径遍历漏洞
CVE-2021-37439NCH FlexiServer 路径遍历漏洞
CVE-2021-37455NCH Axon PBX 跨站脚本漏洞
CVE-2021-37456NCH Axon PBX 跨站脚本漏洞
CVE-2021-37457NCH Axon PBX 跨站脚本漏洞

Showing top 20 of 33 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2021-37463

No comments yet

Leave a comment