Unrated severityNVD Advisory· Published Feb 10, 2022· Updated Aug 4, 2024
CVE-2021-45901
CVE-2021-45901
Description
The password-reset form in ServiceNow Orlando provides different responses to invalid authentication attempts depending on whether the username exists.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)
Patches
Vulnerability mechanics
References
3- packetstormsecurity.com/files/165989/ServiceNow-Orlando-Username-Enumeration.htmlmitrex_refsource_MISC
- www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/servicenow-username-enumeration-vulnerability-cve-2021-45901/mitrex_refsource_MISC
- www.trustwave.com/en-us/resources/security-resources/security-advisories/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.