CVE-2021-40066 in Mobilityinfo

Zusammenfassung

von MITRE • 16.09.2021

The access controls on the Mobility read-only API improperly validate user access permissions. Attackers with both network access to the API and valid credentials can read data from it; regardless of access control group membership settings. This vulnerability is fixed in Mobility v11.76 and Mobility v12.14.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservieren

23.08.2021

Veröffentlichung

16.09.2021

Moderieren

akzeptiert

Eintrag

VDB-182816

CPE

bereit

EPSS

0.00559

KEV

nein

Aktivitäten

very low

Quellen

Want to stay up to date on a daily basis?

Enable the mail alert feature now!