CVE-2019-17087

Published: Dic 11, 2019 Last Modified: Nov 21, 2024 EU-VD ID: EUVD-2019-7555 Aliases: GSD-2019-17087

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 7,5

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: high

Integrity: none

Availability: none

MEDIUM 5,0

Source: [email protected]

Access Vector: network

Access Complexity: low

Authentication: none

Confidentiality: partial

Integrity: none

Availability: none

Description

AI Translation Available

Unauthorized file download vulnerability in all supported versions of Micro Focus AcuToWeb. The vulnerability could be exploited to enumerate and download files from the filesystem of the system running AcuToWeb, with the privileges of the account AcuToWeb is running under.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0032

Percentile

0,5th

Updated

EPSS Score Trend (Last 90 Days)

Application

Acutoweb by Microfocus

Product Information

Vendor Microfocus

Product Acutoweb

Version Range Affected

To 10.3 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:microfocus:acutoweb:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

https://softwaresupport.softwaregrp.com/doc/KM03569662

CVE-2019-17087

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 90 Days)

Acutoweb by Microfocus

Product Information

Iscriviti alla newsletter