External Control of System or Configuration Setting
CVE-2021-38453
Summary
Some API functions allow interaction with the registry, which includes reading values as well as data modification.
- LOW
- NETWORK
- HIGH
- UNCHANGED
- NONE
- NONE
- HIGH
- NONE
CWE-15 - External Control of System or Configuration Setting
One or more system settings or configuration elements can be externally controlled by a user.
References
Advisory Timeline
- Published