RCE in Demon1a Discord-recon
CVE-2021-21433
Discord Recon Server is a bot that allows you to do your reconnaissance process from your Discord. Remote code execution in version 0.0.1 would allow remote users to execute commands on the server resulting in serious issues. This flaw is…
Vulnerability class: RCE (Remote Code Execution)
EPSS: 0.030 (85.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 9.9 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H.
Affected products
- Demon1a Discord-recon — versions <= 0.0.1
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM, Third Party Advisory)
- security-advisories@github.com (Exploit, Patch, Third Party Advisory, x_refsource_MISC, Issue Tracking)
- security-advisories@github.com (Patch, Third Party Advisory, x_refsource_MISC)
Frequently asked questions
- What is CVE-2021-21433?
- CVE-2021-21433 is a critical-severity vulnerability in Demon1a Discord-recon, classified under Code Injection. CVSS score: 9.9/10. Published 2021-04-09.
- How severe is CVE-2021-21433?
- Critical severity. CVSS v3 base score is 9.9 out of 10.