Rapid7 Nexpose version 6.6.95 and earlier allows authenticated users of the Security Console to view and edit any ticket in the legacy ticketing feature, regardless of the assignment of the ticket. This issue was resolved in version 6.6.96, released on August 4, 2021.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://docs.rapid7.com/release-notes/nexpose/20210804/ |
![]() ![]() |
History
No history.

Status: PUBLISHED
Assigner: rapid7
Published: 2021-08-19T15:25:10.545322Z
Updated: 2024-09-17T01:16:12.557Z
Reserved: 2021-04-28T00:00:00
Link: CVE-2021-31868

No data.

Status : Modified
Published: 2021-08-19T16:15:12.293
Modified: 2024-11-21T06:06:23.437
Link: CVE-2021-31868

No data.