CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-38283

Wipro Holmes Orchestrator 20.4.1 (20.4.1_02_11_2020) allows remote attackers to read application log files containing sensitive information via a predictable /log URI.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.1%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://packetstormsecurity.com/files/165031/Wipro-Holmes-Orchestrator-20.4.1-File-Disclosure.html
https://www.wipro.com/holmes/
http://packetstormsecurity.com/files/165031/Wipro-Holmes-Orchestrator-20.4.1-File-Disclosure.html
https://www.wipro.com/holmes/

Products affected by CVE-2021-38283

Wipro » Holmes » Version: 20.4.1

cpe:2.3:a:wipro:holmes:20.4.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-38283

Products

Pricing

Contact Us