2021-12-14 13:59:43
INCD
PUBLISHED
Sysaid API User Enumeration - Attacker sending requests to specific api path without any authorization before 21.3.60 version could get users names from the LDAP server.