exploitDog

GHSA-cv4w-f45p-g3fw

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Oncommand Insight versions prior to 7.3.5 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors.

Oncommand Insight versions prior to 7.3.5 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors.

Ссылки

EPSS

Процентиль: 43%

0.00205

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-319

Связанные уязвимости

CVE-2019-5496

CVSS3: 7.5

nvd

больше 6 лет назад

Oncommand Insight versions prior to 7.3.5 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors.

EPSS

Процентиль: 43%

0.00205

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-319