Vulnerabilities > CVE-2021-41395 - Unspecified vulnerability in Goteleport Teleport

CVSS 6.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

goteleport

NVD

Published: 2021-09-18

Updated: 2021-09-29

Summary

Teleport before 6.2.12 and 7.x before 7.1.1 allows attackers to control a database connection string, in some situations, via a crafted database name or username.

Vulnerable Configurations

Part	Description	Count
Application	Goteleport Goteleport Teleport *	1

References

https://github.com/gravitational/teleport/releases/tag/v6.2.12
https://github.com/gravitational/teleport/releases/tag/v7.1.1