Lucene search
MitreCVELIST:CVE-2021-38562HistoryOct 18, 2021 - 8:52 a.m.
CVE-2021-38562
2021-10-1808:52:58
mitre
www.cve.org
9
vulnerability
best practical request tracker
sensitive information
timing attack
lib/rt/rest2/middleware/auth.pm
Best Practical Request Tracker (RT) 4.2 before 4.2.17, 4.4 before 4.4.5, and 5.0 before 5.0.2 allows sensitive information disclosure via a timing attack against lib/RT/REST2/Middleware/Auth.pm.
References
docs.bestpractical.com/release-notes/rt/index.html
github.com/bestpractical/rt/commit/70749bb66cb13dd70bd53340c371038a5f3ca57c
lists.debian.org/debian-lts-announce/2022/06/msg00019.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2JK57CEEXLQF7MGBCUX76DZHXML7LUSQ/
Related
fedora
fedora
[SECURITY] Fedora 35 Update: rt-4.4.5-4.fc35
2021-10-29 23:20:37
[SECURITY] Fedora 34 Update: rt-4.4.5-4.fc34
2021-10-13 20:30:35
[SECURITY] Fedora 33 Update: rt-4.4.5-4.fc33
2021-10-13 20:26:34
veracode
veracode
Information Disclosure
2021-10-03 11:03:06
osv
osv
CVE-2021-38562
2021-10-18 09:15:08
request-tracker4 - security update
2022-06-23 00:00:00
request-tracker4 vulnerabilities
2023-12-04 18:07:01
openvas
openvas
Fedora: Security Advisory for rt (FEDORA-2021-05feb8a8b2)
2021-10-21 00:00:00
Fedora: Security Advisory for rt (FEDORA-2021-825dd1879f)
2021-10-30 00:00:00
Fedora: Security Advisory for rt (FEDORA-2021-7ddc28a14b)
2021-10-21 00:00:00
nvd
nvd
CVE-2021-38562
2021-10-18 09:15:08
prion
prion
Information disclosure
2021-10-18 09:15:00
alpinelinux
alpinelinux
CVE-2021-38562
2021-10-18 09:15:08
nessus
nessus
debian
debian
[SECURITY] [DLA 3057-1] request-tracker4 security update
2022-06-23 07:42:07
ubuntucve
ubuntucve
CVE-2021-38562
2021-10-18 00:00:00
debiancve
debiancve
CVE-2021-38562
2021-10-18 09:15:08
cve
cve
CVE-2021-38562
2021-10-18 09:15:08
ubuntu
ubuntu
Request Tracker vulnerabilities
2023-12-04 00:00:00