Lucene search
Veracode Vulnerability DatabaseVERACODE:32349HistoryOct 03, 2021 - 11:03 a.m.
Information Disclosure
2021-10-0311:03:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
510
request-tracker4
vulnerability
user enumeration
timing attack
information disclosure
EPSS
0.003
Percentile
71.3%
request-tracker4 is vulnerable to information disclosure. The vulnerability exists due to a user enumeration through a timing side-channel attack.
References
docs.bestpractical.com/release-notes/rt/index.html
github.com/bestpractical/rt/commit/70749bb66cb13dd70bd53340c371038a5f3ca57c
lists.debian.org/debian-lts-announce/2022/06/msg00019.html
lists.fedoraproject.org/archives/list/[email protected]/message/2JK57CEEXLQF7MGBCUX76DZHXML7LUSQ/
security-tracker.debian.org/tracker/CVE-2021-38562
Related
fedora
fedora
[SECURITY] Fedora 35 Update: rt-4.4.5-4.fc35
2021-10-29 23:20:37
[SECURITY] Fedora 34 Update: rt-4.4.5-4.fc34
2021-10-13 20:30:35
[SECURITY] Fedora 33 Update: rt-4.4.5-4.fc33
2021-10-13 20:26:34
osv
osv
CVE-2021-38562
2021-10-18 09:15:08
request-tracker4 - security update
2022-06-23 00:00:00
request-tracker4 vulnerabilities
2023-12-04 18:07:01
nvd
nvd
CVE-2021-38562
2021-10-18 09:15:08
openvas
openvas
Fedora: Security Advisory for rt (FEDORA-2021-05feb8a8b2)
2021-10-21 00:00:00
Fedora: Security Advisory for rt (FEDORA-2021-825dd1879f)
2021-10-30 00:00:00
Fedora: Security Advisory for rt (FEDORA-2021-7ddc28a14b)
2021-10-21 00:00:00
nessus
nessus
prion
prion
Information disclosure
2021-10-18 09:15:00
alpinelinux
alpinelinux
CVE-2021-38562
2021-10-18 09:15:08
cvelist
cvelist
CVE-2021-38562
2021-10-18 08:52:58
cve
cve
CVE-2021-38562
2021-10-18 09:15:08
debiancve
debiancve
CVE-2021-38562
2021-10-18 09:15:08
debian
debian
[SECURITY] [DLA 3057-1] request-tracker4 security update
2022-06-23 07:42:07
ubuntucve
ubuntucve
CVE-2021-38562
2021-10-18 00:00:00
ubuntu
ubuntu
Request Tracker vulnerabilities
2023-12-04 00:00:00