CVE-2021-36723

Summary

Emuse - eServices / eNvoice Exposure Of Private Personal Information due to lack of identification mechanisms and predictable IDs an attacker can scrape all the files on the service.

Affected Software

VendorProductVersion RangeStatus
EmuseeServices / eNvoiceProductionaffected

Weaknesses

  • CWE-359: CWE-359 Exposure of Private Information ('Privacy Violation')

ADP Enrichment

CVE Program Container

Additional References

References