From 9912cc6edbde63de74104b04ce1d7a646cf1b72a Mon Sep 17 00:00:00 2001
From: MostInterestingBotInTheWorld
 <98333686+MostInterestingBotInTheWorld@users.noreply.github.com>
Date: Tue, 17 May 2022 11:09:39 -0400
Subject: [PATCH] Enhancement: cves/2021/CVE-2021-27651.yaml by mp

---
 cves/2021/CVE-2021-27651.yaml | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/cves/2021/CVE-2021-27651.yaml b/cves/2021/CVE-2021-27651.yaml
index 6ff30600ce..850b2bf223 100644
--- a/cves/2021/CVE-2021-27651.yaml
+++ b/cves/2021/CVE-2021-27651.yaml
@@ -1,10 +1,10 @@
 id: CVE-2021-27651
 
 info:
-  name: Pega Infinity Authentication bypass
+  name: Pega Infinity - Authentication Bypass
   author: idealphase
   severity: critical
-  description: In versions 8.2.1 through 8.5.2 of Pega Infinity, the password reset functionality for local accounts can be used to bypass local authentication checks.
+  description: Pega Infinity versions 8.2.1 through 8.5.2 contain an authentication bypass vulnerability because the password reset functionality for local accounts can be used to bypass local authentication checks.
   reference:
     - https://github.com/samwcyo/CVE-2021-27651-PoC/blob/main/RCE.md
     - https://nvd.nist.gov/vuln/detail/CVE-2021-27651
@@ -43,4 +43,6 @@ requests:
       - type: regex
         regex:
           - 'Pega 8\.(?:2\.[1-9]|3\.[0-9]|4\.[0-9]|5\.[0-2])'
-        part: body
\ No newline at end of file
+        part: body
+
+# Enhanced by mp on 2022/05/17