CVE-2020-21514

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2020-21514

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-21514.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2020-21514

Aliases

Published

2023-04-04T15:15:08.187Z

Modified

2026-05-28T04:05:44.959222099Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered in Fluent-ui v.1.2.2 allows attackers to gain escalated privileges and execute arbitrary code due to a default password.

References

Affected packages

Git / github.com/fluent/fluentd

Affected ranges

Type

GIT

Repo

https://github.com/fluent/fluentd

Events

Introduced

Last affected

db3d0039ac7dac86955a02f0eda4f3991a9ef617

Database specific

{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.8.0-NA"
        }
    ],
    "cpe": "cpe:2.3:a:fluentd:fluentd:1.8.0:-:*:*:*:*:*:*",
    "source": "CPE_STRING"
}

Affected versions

v0.*

v0.10.0

v0.10.1

v0.10.10

v0.10.11

v0.10.12

v0.10.13

v0.10.14

v0.10.15

v0.10.16

v0.10.17

v0.10.18

v0.10.19

v0.10.2

v0.10.20

v0.10.21

v0.10.22

v0.10.23

v0.10.24

v0.10.25

v0.10.26

v0.10.27

v0.10.28

v0.10.3

v0.10.30

v0.10.31

v0.10.32

v0.10.34

v0.10.35

v0.10.36

v0.10.37

v0.10.38

v0.10.39

v0.10.40

v0.10.41

v0.10.42

v0.10.43

v0.10.44

v0.10.45

v0.10.46

v0.10.47

v0.10.48

v0.10.49

v0.10.5

v0.10.50

v0.10.51

v0.10.52

v0.10.53

v0.10.6

v0.10.8

v0.10.9

v0.12.0.pre.1

v0.12.0.pre.2

v0.12.1

v0.12.10

v0.12.11

v0.12.12

v0.12.13

v0.12.14

v0.12.15

v0.12.16

v0.12.2

v0.12.3

v0.12.4

v0.12.5

v0.12.6

v0.12.7

v0.12.8

v0.12.9

v0.14.0

v0.14.0.pre.1

v0.14.0.rc.1

v0.14.0.rc.2

v0.14.0.rc.3

v0.14.1

v0.14.10

v0.14.11

v0.14.12

v0.14.13

v0.14.14

v0.14.14.pre.1

v0.14.15

v0.14.16

v0.14.17

v0.14.18

v0.14.19

v0.14.2

v0.14.20

v0.14.20.rc1

v0.14.21

v0.14.22

v0.14.22.rc1

v0.14.22.rc2

v0.14.23

v0.14.23.rc1

v0.14.24

v0.14.25

v0.14.4

v0.14.5

v0.14.7

v0.14.8

v0.14.9

v0.9.0

v0.9.1

v0.9.10

v0.9.11

v0.9.12

v0.9.13

v0.9.14

v0.9.15

v0.9.16

v0.9.17

v0.9.18

v0.9.19

v0.9.2

v0.9.20

v0.9.21

v0.9.3

v0.9.4

v0.9.5

v0.9.6

v0.9.7

v0.9.8

v0.9.9

v1.*

v1.0.0

v1.0.0.rc1

v1.0.1

v1.0.2

v1.1.0

v1.1.1

v1.1.2

v1.1.3

v1.2.0

v1.2.0.pre1

v1.2.1

v1.2.2

v1.2.3

v1.2.4

v1.2.4.rc1

v1.2.5

v1.2.5.rc1

v1.2.6

v1.3.0

v1.3.1

v1.3.2

v1.3.3

v1.4.0

v1.4.1

v1.4.2

v1.5.0

v1.5.0.rc1

v1.5.1

v1.6.0

v1.6.1

v1.6.2

v1.7.0

v1.7.0.rc1

v1.7.1

v1.7.2

v1.7.3

v1.8.0

v1.8.0.rc1

v1.8.0.rc2

v1.8.0.rc3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-21514.json"

Git / github.com/fluent/fluentd-ui

Affected ranges

Type

GIT

Repo

https://github.com/fluent/fluentd-ui

Events

Introduced

Last affected

7df096c62a9c00b72a2cbfd5dfb873cff853f5ae

Database specific

{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.2.2"
        }
    ],
    "source": "CPE_STRING",
    "cpe": "cpe:2.3:a:fluentd:fluentd-ui:1.2.2:*:*:*:*:*:*:*"
}

Affected versions

v0.*

v0.1.0

v0.1.1

v0.1.2

v0.1.3

v0.1.4

v0.2.0

v0.3.0

v0.3.1

v0.3.10

v0.3.11

v0.3.12

v0.3.13

v0.3.14

v0.3.15

v0.3.16

v0.3.17

v0.3.18

v0.3.19

v0.3.2

v0.3.20

v0.3.21

v0.3.3

v0.3.5

v0.3.6

v0.3.7

v0.3.8

v0.3.9

v0.4.0

v0.4.1

v0.4.2

v0.4.3

v0.4.4

v0.4.5

v1.*

v1.0.0

v1.0.0.alpha.1

v1.0.0.alpha.2

v1.0.0.alpha.3

v1.0.0.beta.1