CVE-2019-19610

Опубликовано: 16 мар. 2020

Источник: nvd

CVSS3: 5.4

CVSS2: 5.8

EPSS Низкий

Описание

An issue was discovered in Halvotec RaQuest 10.23.10801.0. It allows session fixation. Fixed in Release 24.2020.20608.0.

Ссылки

https://excellium-services.com/cert-xlm-advisory/
Third Party Advisory
https://excellium-services.com/cert-xlm-advisory/cve-2019-19610/
Third Party Advisory
https://halvotec.de/produkte/raquest/
Product
Vendor Advisory
https://excellium-services.com/cert-xlm-advisory/
Third Party Advisory
https://excellium-services.com/cert-xlm-advisory/cve-2019-19610/
Third Party Advisory
https://halvotec.de/produkte/raquest/
Product
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:halvotec:raquest:10.23.10801.0:*:*:*:*:*:*:*

EPSS

Процентиль: 56%

0.0034

Низкий

5.4 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-384

Связанные уязвимости

GHSA-3p9r-c4wp-v55p

github

больше 3 лет назад

** DISPUTED ** An issue was discovered in Halvotec RaQuest 10.23.10801.0. It allows session fixation. NOTE: the vendor does not recognize this issue and will not patch it.