CVE-2021-43857
HIGH WAF: High
CVSS 8.8
Published: 2021-12-27
CWE-78
Gerapy is a distributed crawler management framework. Gerapy prior to version 0.9.8 is vulnerable to remote code execution, and this issue is patched in version 0.9.8.
WAF Coverage Analysis
OS Command Injection
High WAF Coverage
OWASP: A03:2021 Injection
932xxx - Remote Code Execution
Affected Software
| Vendor | Product | Version |
|---|---|---|
| gerapy | gerapy | up to 0.9.8 |
References
- packetstormsecurity.com (Exploit, Third Party Advisory)
- github.com (Patch, Third Party Advisory)
- github.com (Issue Tracking, Third Party Advisory)
- github.com (Third Party Advisory)