Ubuntu.comUB:CVE-2021-4258CVE-2021-4258
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
54.8%
DISPUTED A vulnerability was found in whohas. It has been rated as
problematic. This issue affects some unknown processing of the component
Package Information Handler. The manipulation leads to cleartext
transmission of sensitive information. The attack may be initiated
remotely. The real existence of this vulnerability is still doubted at the
moment. The name of the patch is 667c3e2e9178f15c23d7918b5db25cd0792c8472.
It is recommended to apply a patch to fix this issue. The associated
identifier of this vulnerability is VDB-216251. NOTE: Most sources redirect
to the encrypted site which limits the possibilities of an attack.
Notes
| Author | Note |
|---|---|
| eslerm | CVE possibly assigned based on commit message |
Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
54.8%