Vulnerabilities > CVE-2021-36721 - Unspecified vulnerability in Sysaid Application Programming Interface
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
NONE Availability impact
NONE Summary
Sysaid API User Enumeration - Attacker sending requests to specific api path without any authorization before 21.3.60 version could get users names from the LDAP server.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |