Low severity3.5NVD Advisory· Published Dec 23, 2025· Updated Apr 15, 2026

CVE-2021-47722

Description

Zucchetti Axess CLOKI Access Control 1.64 contains a cross-site request forgery vulnerability that allows attackers to manipulate access control settings without user interaction. Attackers can craft malicious web pages with hidden forms to disable or modify access control parameters by tricking authenticated users into loading the page.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.axesstmc.comnvd
www.exploit-db.com/exploits/50595nvd
www.vulncheck.com/advisories/zucchetti-axess-cloki-access-control-cross-site-request-forgerynvd
www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5689.phpnvd

News mentions

No linked articles in our index yet.

cvss	0.227
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000