CVE-2019-16386

Опубликовано: 26 нояб. 2019

Источник: nvd

CVSS3: 4.3

CVSS2: 4

EPSS Низкий

Описание

PEGA Platform 7.x and 8.x is vulnerable to Information disclosure via a direct prweb/sso/random_token/!STANDARD?pyActivity=GetWebInfo&target=popup&pzHarnessID=random_harness_id request to get database schema information while using a low-privilege account. NOTE: The vendor states that this vulnerability was discovered using an administrator account and they are normal administrator functions. Therefore, the claim that the CVE was done with a low privilege account is incorrect

Ссылки

https://blog.cybercastrum.com/2019/11/25/cve-2019-16386/
Exploit
Third Party Advisory
https://blog.cybercastrum.com/2019/11/25/cve-2019-16386/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:pega:pega_platform:*:*:*:*:*:*:*:*

Версия от 7.1.0 (включая) до 7.4.0 (включая)

cpe:2.3:a:pega:pega_platform:*:*:*:*:*:*:*:*

Версия от 8.1.0 (включая) до 8.3.1 (включая)

EPSS

Процентиль: 47%

0.0024

Низкий

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-425

Связанные уязвимости

GHSA-5ch4-c735-4f8x