CVE-2019-19986

{"id": "CVE-2019-19986", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2020-02-26T16:15:18.393", "references": [{"url": "https://www.seling.it/", "tags": ["Product"], "source": "cve@mitre.org"}, {"url": "https://www.seling.it/product/vam/", "tags": ["Product", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.telecomitalia.com/tit/it/innovazione/cybersecurity/red-team.html", "tags": ["Exploit", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.seling.it/", "tags": ["Product"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.seling.it/product/vam/", "tags": ["Product", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.telecomitalia.com/tit/it/innovazione/cybersecurity/red-team.html", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in Selesta Visual Access Manager (VAM) 4.15.0 through 4.29. An attacker without authentication is able to execute arbitrary SQL SELECT statements by injecting the HTTP (POST or GET) parameter persoid into /tools/VamPersonPhoto.php. The SQL Injection type is Error-based (this means that relies on error messages thrown by the database server to obtain information about the structure of the database)."}, {"lang": "es", "value": "Se detect\u00f3 un problema en Selesta Visual Access Manager (VAM) versiones 4.15.0 hasta 4.29. Un atacante sin autenticaci\u00f3n es capaz de ejecutar sentencias SQL SELECT arbitrarias al inyectar el persoid del par\u00e1metro HTTP (POST o GET) al archivo /tools/VamPersonPhoto.php. El tipo de Inyecci\u00f3n SQL est\u00e1 basado en Errores (esto significa que se basa en mensajes de error lanzados por el servidor de la base de datos para obtener informaci\u00f3n sobre la estructura de la base de datos)."}], "lastModified": "2024-11-21T04:35:47.403", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:seling:visual_access_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1DDD534-B0DE-4F22-B69F-9971A8609AEF", "versionEndIncluding": "4.29.0", "versionStartIncluding": "4.15.0"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}