Vulnerabilities > CVE-2024-51447

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

CWE-204

NVD

Published: 2025-05-13

Updated: 2025-05-13

Summary

A vulnerability has been identified in Polarion V2310 (All versions), Polarion V2404 (All versions < V2404.2). The login implementation of the affected application contains an observable response discrepancy vulnerability when validating usernames. This could allow an unauthenticated remote attacker to distinguish between valid and invalid usernames.

Common Weakness Enumeration (CWE)

CWE-204 - Response Discrepancy Information Exposure

References

https://cert-portal.siemens.com/productcert/html/ssa-162255.html

Vulnerabilities > CVE-2024-51447 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2024-51447"}]}

Summary

Common Weakness Enumeration (CWE)

References

Vulnerabilities > CVE-2024-51447