What is the severity of CVE-2021-22513?

CVE-2021-22513 has a CVSS v3 score of 0, which is classified as Low severity.

Is there an exploit available for CVE-2021-22513?

No known public exploits are currently available for CVE-2021-22513.

Is there a patch available for CVE-2021-22513?

Yes, patches are available for CVE-2021-22513. Check the vendor advisories for update instructions.

CVE-2021-22513 - CVE Details, Severity, and Analysis

Micro Focus Application Automation Tools Plugin 6.7 and earlier does not perform permission checks in methods implementing form validation.

This allows attackers with Overall/Read permission to connect to attacker-specified URLs using attacker-specified username and password.

Additionally, these form validation methods do not require POST requests, resulting in a cross-site request forgery (CSRF) vulnerability.

Micro Focus Application Automation Tools Plugin 6.8 requires POST requests and Overall/Administer permission for the affected form validation methods.

Ready for Agentic Automated Testing?

CVE-2021-22513