CVE-2019-6142

{"id": "CVE-2019-6142", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.8}]}, "published": "2019-11-05T21:15:13.823", "references": [{"url": "https://help.forcepoint.com/security/CVE/CVE-2019-6142.html", "tags": ["Vendor Advisory"], "source": "psirt@forcepoint.com"}, {"url": "https://help.forcepoint.com/security/CVE/CVE-2019-6142.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "psirt@forcepoint.com", "description": [{"lang": "en", "value": "CWE-79"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "It has been reported that XSS is possible in Forcepoint Email Security, versions 8.5 and 8.5.3. It is strongly recommended that you apply the relevant hotfix in order to remediate this issue."}, {"lang": "es", "value": "Ha sido reportado que una vulnerabilidad de tipo XSS es posible en Forcepoint Email Security, versiones 8.5 y 8.5.3. Se recomienda encarecidamente que apliquen un parche en caliente para solucionar este problema."}], "lastModified": "2024-11-21T04:46:01.513", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:forcepoint:email_security:8.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78E3F701-3818-4F61-9106-39BCE15B28C0"}, {"criteria": "cpe:2.3:a:forcepoint:email_security:8.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F954B655-E3BC-4D8D-8C3B-DFF973568D6E"}, {"criteria": "cpe:2.3:a:forcepoint:security_manager:8.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B028429B-B847-43FB-8930-2BE4731360FB"}, {"criteria": "cpe:2.3:a:forcepoint:security_manager:8.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7DDE81F6-249B-44E2-85CD-6B15745D4C69"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@forcepoint.com"}