exploitDog

CVE-2019-19660

Опубликовано: 10 фев. 2020

Источник: nvd

CVSS3: 6.5

CVSS2: 4.3

EPSS Низкий

Описание

A CSRF vulnerability exists in the Web File Manager's Network Setting functionality of Rumpus FTP Server 8.2.9.1. By exploiting it, an attacker can manipulate the SMTP setting and other network settings via RAPR/NetworkSettingsSet.html.

Ссылки

https://github.com/harshit-shukla/CVE
Third Party Advisory
https://raw.githubusercontent.com/harshit-shukla/CVE/master/CVE-2019-19660.md
Third Party Advisory
https://github.com/harshit-shukla/CVE
Third Party Advisory
https://raw.githubusercontent.com/harshit-shukla/CVE/master/CVE-2019-19660.md
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:maxum:rumpus:8.2.9.1:*:*:*:*:*:*:*

EPSS

Процентиль: 37%

0.00161

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-prgj-fx3q-8ffq

github

больше 3 лет назад

A CSRF vulnerability exists in the Web File Manager's Network Setting functionality of Rumpus FTP Server 8.2.9.1. By exploiting it, an attacker can manipulate the SMTP setting and other network settings via RAPR/NetworkSettingsSet.html.

EPSS

Процентиль: 37%

0.00161

Низкий

6.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-352