Vulnerability Details CVE-2021-44674
An information exposure issue has been discovered in Opmantek Open-AudIT 4.2.0. The vulnerability allows an authenticated attacker to read file outside of the restricted directory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 61.2%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
- http://open-audit.com
- http://opmantek.com
- https://community.opmantek.com/display/OA/Release+Notes+for+Open-AudIT+v4.3.0
- https://github.com/Opmantek/open-audit/commit/d27b649283aa6a01a15e5a3df1520d7aa69a5e18
- http://open-audit.com
- http://opmantek.com
- https://community.opmantek.com/display/OA/Release+Notes+for+Open-AudIT+v4.3.0
- https://github.com/Opmantek/open-audit/commit/d27b649283aa6a01a15e5a3df1520d7aa69a5e18
Products affected by CVE-2021-44674
-
cpe:2.3:a:opmantek:open-audit:4.2.0