exploitDog

CVE-2019-19458

Опубликовано: 03 дек. 2019

Источник: nvd

CVSS3: 8.6

CVSS2: 5

EPSS Низкий

Описание

SALTO ProAccess SPACE 5.4.3.0 allows Directory Traversal in the Data Export feature.

Ссылки

https://packetstormsecurity.com/files/155525/SALTO-ProAccess-SPACE-5.5-Traversal-File-Write-XSS-Bypass.html
Exploit
Third Party Advisory
VDB Entry
https://sec-consult.com/en/blog/advisories/multiple-critical-vulnerabilities-in-salto-proaccess-space/
Exploit
Third Party Advisory
https://packetstormsecurity.com/files/155525/SALTO-ProAccess-SPACE-5.5-Traversal-File-Write-XSS-Bypass.html
Exploit
Third Party Advisory
VDB Entry
https://sec-consult.com/en/blog/advisories/multiple-critical-vulnerabilities-in-salto-proaccess-space/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:saltosystem:proaccess_space:*:*:*:*:*:*:*:*

Версия до 5.5 (включая)

EPSS

Процентиль: 75%

0.00877

Низкий

8.6 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-vg44-7gqv-2h5h

CVSS3: 8.6

github

больше 3 лет назад

SALTO ProAccess SPACE 5.4.3.0 allows Directory Traversal in the Data Export feature.

EPSS

Процентиль: 75%

0.00877

Низкий

8.6 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-22