← Volver a CVEs
CVE-2019-9505
CRITICAL9.8
Descripcion
The PrinterLogic Print Management software, versions up to and including 18.3.1.96, does not sanitize special characters allowing for remote unauthorized changes to configuration files. An unauthenticated attacker may be able to remotely execute arbitrary code with SYSTEM privileges.
Detalles CVE
Puntuacion CVSS v3.19.8
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado5/8/2019
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
printerlogic:print_management
Debilidades (CWE)
CWE-159
Referencias
http://www.securityfocus.com/bid/108285(cret@cert.org)
https://kb.cert.org/vuls/id/169249/(cret@cert.org)
http://www.securityfocus.com/bid/108285(af854a3a-2127-422b-91ae-364da2661108)
https://kb.cert.org/vuls/id/169249/(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.