Vulnerability Details : CVE-2021-38130
A potential Information leakage vulnerability has been identified in versions of Micro Focus Voltage SecureMail Mail Relay prior to 7.3.0.1. The vulnerability could be exploited to create an information leakage attack.
Published
2022-02-04 23:15:12
Updated
2022-02-09 03:06:37
Products affected by CVE-2021-38130
- cpe:2.3:a:microfocus:voltage_securemail:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2021-38130
0.25%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 45 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2021-38130
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
4.0
|
MEDIUM | AV:N/AC:L/Au:S/C:P/I:N/A:N |
8.0
|
2.9
|
NIST | |
|
6.5
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
2.8
|
3.6
|
NIST |
CWE ids for CVE-2021-38130
-
The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.Assigned by: nvd@nist.gov (Primary)
References for CVE-2021-38130
-
https://portal.microfocus.com/s/article/KM000003667
CVE-2021-38130 Voltage SecureMail 7.3 Mail Relay Information Leakage Vuln.Mitigation;Vendor Advisory
Jump to