CVE-2021-3149 in OpenSSL and McAfee Products
Published on February 22, 2021

On Netshield NANO 25 10.2.18 devices, /usr/local/webmin/System/manual_ping.cgi allows OS command injection (after authentication by the attacker) because the system C library function is used unsafely.

NVD

Products Associated with CVE-2021-3149

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-3149 are published in these products:

OpenSSL

McAfee Web Gateway Cloud Service

Mcafee Web Gateway

Exploit Probability

EPSS

2.45%

Percentile

84.93%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-3149 in OpenSSL and McAfee ProductsPublished on February 22, 2021

Products Associated with CVE-2021-3149

Exploit Probability

CVE-2021-3149 in OpenSSL and McAfee Products
Published on February 22, 2021