← back
CVE-2021-37291observed exploitation

CVE-2021-37291

40Vexday Risk Score

Patch now. It exploitation observed by VulnCheck and has a working public exploit.

ssvc Actepss 8.1%
from disclosure to weapon
Published on NVDApr 11
VulnCheck+581d
exploitation probability
8.1%top 6% of all CVEs
observed exploitation
yesVulnCheck
An SQL Injection vulnerability exists in KevinLAB Inc Building Energy Management System 4ST BEMS 1.0.0 ivia the input_id POST parameter in index.php.
Affected products
n/a · n/a