{"containers":{"cna":{"affected":[{"product":"Shockwall","vendor":"SUN & MOON RISE CO., LTD.","versions":[{"lessThan":"7.20.0401","status":"affected","version":"unspecified","versionType":"custom"}]}],"datePublic":"2021-12-30T00:00:00.000Z","descriptions":[{"lang":"en","value":"The programming function of Shockwall system has an improper input validation vulnerability. An authenticated attacker within the local area network can send malicious response to the server to disrupt the service partially."}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"ADJACENT_NETWORK","availabilityImpact":"LOW","baseScore":3.5,"baseSeverity":"LOW","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L","version":"3.1"}}],"problemTypes":[{"descriptions":[{"cweId":"CWE-20","description":"CWE-20 Improper Input Validation","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2022-01-03T10:10:20.000Z","orgId":"cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e","shortName":"twcert"},"references":[{"tags":["x_refsource_MISC"],"url":"https://www.twcert.org.tw/tw/cp-132-5432-b9074-1.html"}],"solutions":[{"lang":"en","value":"Contact tech support from SUN & MOON RISE CO., LTD."}],"source":{"advisory":"TVN-202109020","discovery":"EXTERNAL"},"title":"SUN & MOON RISE CO., LTD. Shockwall - Improper Input Validation","x_generator":{"engine":"Vulnogram 0.0.9"},"x_legacyV4Record":{"CVE_data_meta":{"AKA":"TWCERT/CC","ASSIGNER":"cve@cert.org.tw","DATE_PUBLIC":"2021-12-30T08:40:00.000Z","ID":"CVE-2021-45916","STATE":"PUBLIC","TITLE":"SUN & MOON RISE CO., LTD. Shockwall - Improper Input Validation"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Shockwall","version":{"version_data":[{"version_affected":"<","version_value":"7.20.0401"}]}}]},"vendor_name":"SUN & MOON RISE CO., LTD."}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The programming function of Shockwall system has an improper input validation vulnerability. An authenticated attacker within the local area network can send malicious response to the server to disrupt the service partially."}]},"generator":{"engine":"Vulnogram 0.0.9"},"impact":{"cvss":{"attackComplexity":"LOW","attackVector":"ADJACENT_NETWORK","availabilityImpact":"LOW","baseScore":3.5,"baseSeverity":"LOW","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L","version":"3.1"}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-20 Improper Input Validation"}]}]},"references":{"reference_data":[{"name":"https://www.twcert.org.tw/tw/cp-132-5432-b9074-1.html","refsource":"MISC","url":"https://www.twcert.org.tw/tw/cp-132-5432-b9074-1.html"}]},"solution":[{"lang":"en","value":"Contact tech support from SUN & MOON RISE CO., LTD."}],"source":{"advisory":"TVN-202109020","discovery":"EXTERNAL"}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T04:54:30.919Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://www.twcert.org.tw/tw/cp-132-5432-b9074-1.html"}]}]},"cveMetadata":{"assignerOrgId":"cded6c7f-6ce5-4948-8f87-aa7a3bbb6b0e","assignerShortName":"twcert","cveId":"CVE-2021-45916","datePublished":"2022-01-03T10:10:20.373Z","dateReserved":"2021-12-29T00:00:00.000Z","dateUpdated":"2024-09-16T16:38:51.598Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}