CVE-2021-35251

Опубликовано: 10 мар. 2022

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

Sensitive information could be displayed when a detailed technical error message is posted. This information could disclose environmental details about the Web Help Desk installation.

Ссылки

https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_12-7-8_release_notes.htm
Release Notes
Vendor Advisory
https://www.solarwinds.com/trust-center/security-advisories/CVE-2021-35251
Vendor Advisory
https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_12-7-8_release_notes.htm
Release Notes
Vendor Advisory
https://www.solarwinds.com/trust-center/security-advisories/CVE-2021-35251
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:solarwinds:web_help_desk:*:*:*:*:*:*:*:*

Версия до 12.7.8 (исключая)

EPSS

Процентиль: 72%

0.00722

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-209

Связанные уязвимости

GHSA-3wrr-68x8-p887