Sensitive Data Disclosure Vulnerability

(CVE-2021-35251)

Summary

Sensitive information could be displayed when a detailed technical error message is posted. This information could disclose environmental details about the Web Help Desk installation.

Affected Products

WHD 12.7.7 H1 and previous versions

Fixed Software Release

WHD 12.7.8

Acknowledgments

Anthony Meluso

Advisory Details

Severity

5.3 Medium

Advisory ID

CVE-2021-35251

First Published

02/15/2022

Last Updated

02/15/2022

Fixed Version

WHD 12.7.8

CVSS Score

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/

S:U/C:L/I:N/A:N