CVE-2021-43287
65Vexday Risk Score
Patch now. It exploitation observed by VulnCheck and has a working public exploit.
ssvc Actepss 28%
from disclosure to weapon23 days
Published on NVDApr 14
1st PoC+23d
VulnCheck+383d
exploitation probability
28%top 2% of all CVEs
observed exploitation
yesVulnCheck
1 public exploit(s)
An issue was discovered in ThoughtWorks GoCD before 21.3.0. The business continuity add-on, which is enabled by default, leaks all secrets known to the GoCD server to unauthenticated attackers.
Affected products
n/a · n/apublic PoCs found — 1
vulncheckvulncheck.com/xdb/302bb5e4f327unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.