PT-2021-14799 · Gmbh · Komoot

Martin Zeiser

Published

2021-08-20

Updated

2022-07-21

CVE-2021-21823

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions GmbH Komoot versions 10.26.9 through 11.1.11

Description An information disclosure issue exists in the Friend finder functionality. A specially crafted series of network requests can lead to the disclosure of sensitive information.

Recommendations For versions 10.26.9 through 11.1.11, update to a version later than 11.1.11 to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-359CWE-200

Related Identifiers

CVE-2021-21823

Affected Products

Komoot

PT-2021-14799 · Gmbh · Komoot

CVE-2021-21823

Weakness Enumeration

Related Identifiers

Affected Products

References · 3