Vulnerability Details : CVE-2021-22859
The users’ data querying function of EIC e-document system does not filter the special characters which resulted in remote attackers can inject SQL syntax and execute arbitrary commands without privilege.
Vulnerability category: Sql Injection
Exploit prediction scoring system (EPSS) score for CVE-2021-22859
0.57%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 75 %
Percentile, the proportion of vulnerabilities that are scored at or less