2-Factor Authentication Bypass Vulnerability in RISC Platform by Flexera
CVE-2021-41527

2.3LOW

Key Information:

Vendor: Flexera
Status: Risc Platform
Vendor: CVE Published:; 7 February 2025

What is CVE-2021-41527?

A security flaw in the RISC Platform's 2-factor authentication mechanism can be exploited to bypass the authentication process. This flaw occurs when the 2FA setup has not been completed, allowing unauthorized access to protected features. Users of the RISC Platform prior to the saas-2021-12-29 release should take immediate action to ensure their 2FA is fully configured to mitigate the risk of unauthorized access.

Affected Version(s)

RISC Platform 0

References

https://community.flexera.com/s/feed/0D5PL00000Nwgg30AB

vendor-advisory

https://medium.com/@amroot/cve-2021-41527-flexera-multi-f...

CVSS V4

Score:

2.3

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 7, 2025
Vulnerability Reserved
Sep 20, 2021

CVE-2021-41527 Data

JSON