exploitDog

CVE-2019-12734

Опубликовано: 06 дек. 2019

Источник: nvd

CVSS3: 8.8

CVSS2: 6.5

EPSS Низкий

Описание

SiteVision 4 has Incorrect Access Control.

Ссылки

http://packetstormsecurity.com/files/155584/SiteVision-4.x-5.x-Insufficient-Module-Access-Control.html
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2019/Dec/12
Exploit
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2019/Dec/13
Exploit
Mailing List
Third Party Advisory
https://www.cybercom.com/About-Cybercom/Blogs/Security-Advisories/high-risk-vulnerabilities-in-cms-product/
Third Party Advisory
https://www.cybercom.com/contentassets/ac929be030744b8e92dc6e457fdb7dcc/sitevision-disclosure-insufficient-access-control.pdf
Exploit
Third Party Advisory
https://www.sitevision.se/
Product
http://packetstormsecurity.com/files/155584/SiteVision-4.x-5.x-Insufficient-Module-Access-Control.html
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2019/Dec/12
Exploit
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2019/Dec/13
Exploit
Mailing List
Third Party Advisory
https://www.cybercom.com/About-Cybercom/Blogs/Security-Advisories/high-risk-vulnerabilities-in-cms-product/
Third Party Advisory
https://www.cybercom.com/contentassets/ac929be030744b8e92dc6e457fdb7dcc/sitevision-disclosure-insufficient-access-control.pdf
Exploit
Third Party Advisory
https://www.sitevision.se/
Product

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:sitevision:sitevision:*:*:*:*:*:*:*:*

Версия от 4.0 (включая) до 4.5.6 (исключая)

cpe:2.3:a:sitevision:sitevision:*:*:*:*:*:*:*:*

Версия от 5.0 (включая) до 5.1.1 (исключая)

EPSS

Процентиль: 65%

0.00496

Низкий

8.8 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-862

Связанные уязвимости

GHSA-jpw6-2r95-2wmf

CVSS3: 8.8

github

больше 3 лет назад

SiteVision 4 has Incorrect Access Control.

EPSS

Процентиль: 65%

0.00496

Низкий

8.8 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-862