CVE-2021-31589
65Vexday Risk Score
Patch now. It exploitation observed by VulnCheck and has a working public exploit.
ssvc Actepss 28%
from disclosure to weapon469 days
Published on NVDJan 5
1st PoC+469d
VulnCheck+226d
exploitation probability
28%top 2% of all CVEs
observed exploitation
yesVulnCheck
1 public exploit(s)
A cross-site scripting (XSS) vulnerability has been reported and confirmed for BeyondTrust Secure Remote Access Base Software version 6.0.1 and older, which allows the injection of unauthenticated, specially-crafted web requests without proper sanitization.
Affected products
n/a · n/apublic PoCs found — 1
vulncheckvulncheck.com/xdb/ed371c62e95bunverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.