CVE-2021-21823

Summary

An information disclosure vulnerability exists in the Friend finder functionality of GmbH Komoot version 10.26.9 up to 11.1.11. A specially crafted series of network requests can lead to the disclosure of sensitive information.

Affected Software

VendorProductVersion RangeStatus
n/aKomootKomoot GmbH Komoot 10.26.9 , Komoot GmbH Komoot 11.0.14 ,Komoot GmbH Komoot 11.1.11affected

Weaknesses

  • CWE-359: CWE-359: Exposure of Private Information ('Privacy Violation')

ADP Enrichment

CVE Program Container

Additional References

References