CVE-2021-32455 MEDIUM

CVE-2021-32455: SITEL CAP/PRX vulnerable to a denial of service attack

Vendor Sitel
Product CAP/PRX
Weakness CWE-400
Published May 17, 2021
Last update September 16, 2024

CVSS base score

6.8/10
Attack vector Adjacent
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

What the vulnerability does

01Description

SITEL CAP/PRX firmware version 5.2.01, allows an attacker with access to the device´s network to cause a denial of service condition on the device. An attacker could exploit this vulnerability by sending HTTP requests massively.

Key dates

02Disclosure timeline

May 17, 2021 CVE published
September 16, 2024 Record updated