What is CVE-2021-32076?

CVE-2021-32076 is a medium-severity vulnerability in Solarwinds Web Help Desk, classified under Authentication Bypass by Spoofing. CVSS score: 5.3/10. Published 2021-08-26.

How severe is CVE-2021-32076?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Vulnerability in Solarwinds Web Help Desk

CVE-2021-32076

Access Restriction Bypass via referrer spoof was discovered in SolarWinds Web Help Desk 12.7.2. An attacker can access the 'Web Help Desk Getting Started Wizard', especially the admin account creation page, from a non-privileged IP address…

EPSS: 0.005 (65.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N.

Affected products

Solarwinds Web Help Desk — versions unspecified

Weakness classification (CWE)

CWE-290 — Authentication Bypass by Spoofing

References

www.solarwinds.com/trust-center/security-advisories/cve-2021-32076 (x_refsource_MISC)

Frequently asked questions

What is CVE-2021-32076?: CVE-2021-32076 is a medium-severity vulnerability in Solarwinds Web Help Desk, classified under Authentication Bypass by Spoofing. CVSS score: 5.3/10. Published 2021-08-26.
How severe is CVE-2021-32076?: Medium severity. CVSS v3 base score is 5.3 out of 10.