Security Advisory

CVE-2021-42336

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-15 12:10:40
Last updated 2024-09-16 16:33:19
Assigner twcert
State PUBLISHED

Description

The learning history page of the Easytest is vulnerable by permission bypass. After obtaining a user’s permission, remote attackers can access other users’ and administrator’s account information except password by crafting URL parameters.