CVE-2019-19665

{"id": "CVE-2019-19665", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2020-02-10T16:15:14.187", "references": [{"url": "https://github.com/harshit-shukla/CVE", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://github.com/harshit-shukla/CVE/blob/master/CVE-2019-19665.md", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://github.com/harshit-shukla/CVE", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/harshit-shukla/CVE/blob/master/CVE-2019-19665.md", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-352"}]}], "descriptions": [{"lang": "en", "value": "A CSRF vulnerability exists in the FTP Settings of Web File Manager in Rumpus FTP 8.2.9.1. Exploitation of this vulnerability can result in manipulation of Server FTP settings at RAPR/FTPSettingsSet.html."}, {"lang": "es", "value": "Se presenta una vulnerabilidad de tipo CSRF en FTP Settings de Web File Manager en Rumpus FTP versi\u00f3n 8.2.9.1. La explotaci\u00f3n de esta vulnerabilidad puede resultar en la manipulaci\u00f3n de la configuraci\u00f3n de Server FTP en el archivo RAPR/FTPSettingsSet.html."}], "lastModified": "2024-11-21T04:35:09.067", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:maxum:rumpus:8.2.9.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1600FDD4-22B1-4D5E-994A-43DFBB86C31E"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}