Vulnerability Details CVE-2024-51447
A vulnerability has been identified in Polarion V2310 (All versions), Polarion V2404 (All versions < V2404.2). The login implementation of the affected application contains an observable response discrepancy vulnerability when validating usernames. This could allow an unauthenticated remote attacker to distinguish between valid and invalid usernames.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.2%
CVSS Severity
CVSS v3 Score 5.3
Products affected by CVE-2024-51447
-
cpe:2.3:a:siemens:polarion_alm:*
-
cpe:2.3:a:siemens:polarion_alm:2310