CVE-2021-42536

8.0 HIGH

The affected product is vulnerable to a disclosure of peer username and password by allowing all users access to read global variables

Published: 2021-10-22 · Last updated: 2026-06-17

Severity and scoring

Vendor	Product
emerson	wireless_1410_gateway_firmware, wireless_1410d_gateway_firmware, wireless_1420_gateway_firmware

The affected product is vulnerable to a disclosure of peer username and password by allowing all users access to read global variables.

Source: NVD

Same vendor

CVE-2021-42542 — The affected product is vulnerable to directory traversal due to mishandling of provided backup folder structure (8.0 HIGH)
CVE-2021-42540 — The affected product is vulnerable to a unsanitized extract folder for system configuration (8.0 HIGH)
CVE-2021-42539 — The affected product is vulnerable to a missing permission validation on system backup restore, which could lead to account take over and... (8.0 HIGH)
CVE-2021-42538 — The affected product is vulnerable to a parameter injection via passphrase, which enables the attacker to supply uncontrolled input (8.0 HIGH)
CVE-2021-38485 — The affected product is vulnerable to improper input validation in the restore file (8.0 HIGH)

Same CWE

CVE-2026-12117 — Improper access control in the social login connection endpoint in Devolutions Server 2026.2.5 allows an authenticated vault member to ...
CVE-2026-12320 — Information disclosure in the Password Manager component (4.3 MEDIUM)
CVE-2026-12311 — Information disclosure, sandbox escape in the Security: Process Sandboxing component (4.7 MEDIUM)
CVE-2026-50870 — An information disclosure vulnerability in the configuration endpoint of Ben Busby whoogle-search v1.2.3 allows attackers to obtain sensi... (7.5 HIGH)
CVE-2026-39007 — An issue in Observeinc's Observe v.2026-01-28 and before allows a remote attacker to obtain sensitive information via the CSV Log export ... (7.5 HIGH)