How severe is CVE-2021-39040?

Medium severity. CVSS v3 base score is 6.3 out of 10.

Vulnerability in Ibm Planning Analytics Workspace

CVE-2021-39040

IBM Planning Analytics Workspace 2.0 could be vulnerable to malicious file upload by not validating the file types or sizes. Attackers can make use of this weakness and upload malicious executable files into the system and it can be sent t…

EPSS: 0.002 (39.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.3 (Medium). Vector: CVSS:3.0/I:H/UI:R/A:N/C:L/AV:N/AC:L/PR:L/S:U/RC:C/RL:O/E:U.

Affected products

Ibm Planning Analytics Workspace — versions 2.0

References

www.ibm.com/support/pages/node/6574003 (x_refsource_CONFIRM)
ibm-planning-cve202139040-file-upload (214025) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2021-39040?: CVE-2021-39040 is a medium-severity vulnerability in Ibm Planning Analytics Workspace. CVSS score: 6.3/10. Published 2022-04-25.
How severe is CVE-2021-39040?: Medium severity. CVSS v3 base score is 6.3 out of 10.