CVE-2021-33577

Published: 2021-06-18T11:15Z

Last Modified: 2024-11-21T06:09Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An issue was discovered in Cleo LexiCom 5.5.0.0. The requirement for the sender of an AS2 message to identify themselves (via encryption and signing of the message) can be bypassed by changing the Content-Type of the message to text/plain. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt