Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

GHSA-8jvg-8759-x9j6

GitHub Security Advisory

Exposure of Sensitive Information to an Unauthorized Actor in Apache Guacamole

⚠ Unreviewed MODERATE Has CVE
View on GitHub

Advisory Details

Apache Guacamole 1.3.0 and older may incorrectly include a private tunnel identifier in the non-private details of some REST responses. This may allow an authenticated user who already has permission to access a particular connection to read from or interact with another user's active use of that same connection.

Related CVEs

CVE-2021-41767

Key Information

GHSA ID
GHSA-8jvg-8759-x9j6
Published
February 15, 2022 1:44 AM
Last Modified
February 15, 2022 1:44 AM
CVSS Score
5.0 /10
Primary Ecosystem
Unknown
Primary Package
Unknown
GitHub Reviewed
✗ No

Dataset

Last updated: July 28, 2025 6:37 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.