CVE-2021-28657

Risk Scores

Affected Products

Exploit Intelligence

• https://lists.apache.org/thread.html/r915add4aa52c60d1b5cf085039cfa73a98d7fae9673374dfd7744b5a%40%3Cdev.tika.apache.org%3E (circl)
• [james-notifications] 20210501 [GitHub] [james-project] chibenwa opened a new pull request #414: [UPGRADE] Adopt Apache Tika 1.26 (circl)
• https://www.oracle.com/security-alerts/cpuoct2021.html (circl)
• https://security.netapp.com/advisory/ntap-20210507-0004/ (circl)
• https://www.oracle.com/security-alerts/cpuapr2022.html (circl)
• https://www.cisa.gov/news-events/alerts/2024/09/18/cisa-adds-five-known-exploited-vulnerabilities-catalog (certbund)
• dependency-check-suppression.xml (github-poc)
• dependency-check-suppression.xml (github-poc)
• dependency-check-suppression.xml (github-poc)
• dependency-check-suppression.xml (github-poc)

…and 3 more exploits

Timeline

• CVE Published
• Apr 14, 2021 EPSS Score
• May 2, 2021 EPSS Score
• Jun 23, 2021 EPSS Score
• Aug 24, 2021 EPSS Score
• Oct 21, 2021 EPSS Score
• Dec 27, 2021 EPSS Score
• Jan 6, 2022 EPSS Score
• Feb 4, 2022 EPSS Score
• Feb 28, 2022 EPSS Score
• May 1, 2022 EPSS Score
• Jul 3, 2022 EPSS Score

References

• https://ubuntu.com/security/CVE-2021-28657 third-party-advisory
• https://www.openwall.com/lists/oss-security/2021/03/30/3 third-party-advisory
• https://lists.apache.org/thread.html/r915add4aa52c60d1b5cf085039cfa73a98d7fae9673374dfd7744b5a%40%3Cdev.tika.apache.org%3E third-party-advisory
• https://www.cve.org/CVERecord?id=CVE-2021-28657 third-party-advisory