CVE-2021-35225P4MEDIUMCVSS 6.4≥ 2020.2.6 Hotfix 1 and previous versions, < 2020.2.6 Hotfix 22021-10-21
CVE-2021-35225 [MEDIUM] CVE-2021-35225: Each authenticated Orion Platform user in a MSP (Managed Service Provider) environment can view and
Each authenticated Orion Platform user in a MSP (Managed Service Provider) environment can view and browse all NetPath Services from all that MSP's customers. This can lead to any user having a limited insight into other customer's infrastructure and potential data cross-contamination.
nvd