LiveActive security incident?Get immediate response
CVE Record

CVE-2021-32017: An issue was discovered in JUMP AMS 3.6.0.04.009-2487.

An issue was discovered in JUMP AMS 3.6.0.04.009-2487. A JUMP SOAP endpoint permitted the listing of the content of the remote file system. This can be used to identify the complete server filesystem structure, i.e., identifying all the directories and files.

CriticalCVSS 9.9Not KEV-listedUpdated
Glexia's TakeAutomated analysiscritical

Security readout for executives and security teams

Plain-English summary

CVE-2021-32017 lets a low-privileged remote user list the server filesystem through a JUMP SOAP endpoint. That can reveal directory and file names across the server, supporting later compromise planning. The supplied sources do not show active exploitation or a named patch.

Executive priority

Treat as urgent for any reachable JUMP AMS deployment. Even without confirmed exploitation, broad filesystem visibility can materially aid intrusion planning and indicates weak server-side authorization around a privileged interface.

Technical view

JUMP AMS 3.6.0.04.009-2487 exposed a SOAP endpoint that permitted remote filesystem content listing. CVSS 3.1 is 9.9 critical with network access, low complexity, low privileges, no user interaction, changed scope, and high confidentiality, integrity, and availability impact.

Likely exposure

Exposure is most likely where JUMP AMS 3.6.0.04.009-2487 is deployed and the affected SOAP endpoint is reachable by authenticated low-privileged users over the network.

Exploitation context

The source bundle describes filesystem enumeration capability only. CISA KEV is false, and no supplied source confirms active exploitation, public exploit use, or weaponized details.

Researcher notes

Evidence is limited to the CVE description and two advisories. Affected vendor/product metadata is sparse in the bundle, so confirm exact product ownership, deployment architecture, and vendor remediation before making implementation decisions.

Mitigation direction

  • Inventory JUMP AMS deployments and identify version 3.6.0.04.009-2487.
  • Review Thales and Excellium guidance for supported fixes or workarounds.
  • Restrict SOAP endpoint access to required trusted networks and users.
  • Monitor vendor channels for remediation instructions if no fix is deployed.
  • Prioritize remediation for internet-facing or broadly reachable instances.

Validation and detection

  • Confirm whether JUMP AMS 3.6.0.04.009-2487 exists in asset inventory.
  • Map network reachability to the JUMP SOAP endpoint from user segments.
  • Review logs for unusual SOAP requests or filesystem enumeration patterns.
  • Verify access controls limit low-privileged users from sensitive service functions.
  • Document whether a vendor-approved fix or workaround has been applied.
Prepared
Confidence
medium
Sources
4

Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.

Potential ATT&CK relevance

Conservative CVE-to-ATT&CK context

These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.

ATT&CK lookup starting points

Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.

cve · low confidence lookup

CVE-2021-32017 mapping review

Open the CVE-to-ATT&CK bridge for reviewed, inferred, or future official mappings tied to this CVE.

Open ATT&CK lookup
Vulnerability profileCVE Program record
Severity
Critical
CVSS
9.9 (3.1)
Known Exploited
No
Published

Vector: CVSS:3.1/AC:L/AV:N/A:H/C:H/I:H/PR:L/S:C/UI:N

Official CVE source material

CNA and ADP enrichment extracted from CVE v5

These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.

1CVSS vectors
0Timeline events
0ADP providers
3Source links

CVSS vector scores

1 official score

We collect every scored CVSS vector available in the official CNA and ADP containers. When more than one version is present, the table keeps the source vectors side by side instead of collapsing them into the highest score.

ScoreVersionSeverityVectorExploitImpactSource
9.9CVSS 3.1CriticalCVSS:3.1/AC:L/AV:N/A:H/C:H/I:H/PR:L/S:C/UI:N3.16Primary CVE score

Vulnerability scoring details

Base CVSS 3.1 score

9.9Critical
CVSS 3.1 vector shape for CVE-2021-32017Attack VectorAttack ComplexityPrivileges RequiredUser InteractionScopeConfidentiality ImpactIntegrity ImpactAvailability Impact

Vector: CVSS:3.1/AC:L/AV:N/A:H/C:H/I:H/PR:L/S:C/UI:N

Attack Vector
NetworkAdjacentLocalPhysical
Attack Complexity
LowHigh
Privileges Required
NoneLowHigh
User Interaction
NoneRequired
Scope
ChangedUnchanged
Confidentiality Impact
HighLowNone
Integrity Impact
HighLowNone
Availability Impact
HighLowNone
Affected products

Products and packages named in the record

VendorProductVersion / packageStatus
n/an/an/aListed
Weakness

CWE details

No CWE listed

CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.