CVE-2019-7671

Prima Systems FlexAir, Versions 2.3.38 and prior. Parameters sent to scripts are not properly sanitized before being returned to the user, which may allow an attacker to execute arbitrary code in a user’s browser session in context of an affected site.

CVSS v3 9.0 CRITICAL
CVSS v2.0 3.5 LOW

9.0^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 2.3 / Impact : 6.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

3.5^/10

CVSS v2.0 : LOW

Vector : AV:N/AC:M/Au:S/C:N/I:P/A:N

Exploitability : 6.8 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://packetstormsecurity.com/files/155274/Prima-Access-Control-2.3.35-Cross-Site-Scripting.html	Exploit Third Party Advisory VDB Entry
https://applied-risk.com/index.php/download_file/view/199/165	Broken Link
https://applied-risk.com/labs/advisories	Not Applicable Third Party Advisory
https://applied-risk.com/resources/ar-2019-007	Third Party Advisory
https://www.us-cert.gov/ics/advisories/icsa-19-211-02	Third Party Advisory US Government Resource

Configurations

Configuration 1 (hide)

cpe:2.3:a:primasystems:flexair:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-06-05 19:29

Updated : 2024-02-28 17:08

NVD link : CVE-2019-7671

Mitre link : CVE-2019-7671

CVE.ORG link : CVE-2019-7671

JSON object : View

Products Affected

primasystems

flexair

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

{"id": "CVE-2019-7671", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.0, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 2.3}]}, "published": "2019-06-05T19:29:00.357", "references": [{"url": "http://packetstormsecurity.com/files/155274/Prima-Access-Control-2.3.35-Cross-Site-Scripting.html", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "https://applied-risk.com/index.php/download_file/view/199/165", "tags": ["Broken Link"], "source": "cve@mitre.org"}, {"url": "https://applied-risk.com/labs/advisories", "tags": ["Not Applicable", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://applied-risk.com/resources/ar-2019-007", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.us-cert.gov/ics/advisories/icsa-19-211-02", "tags": ["Third Party Advisory", "US Government Resource"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Prima Systems FlexAir, Versions 2.3.38 and prior. Parameters sent to scripts are not properly sanitized before being returned to the user, which may allow an attacker to execute arbitrary code in a user\u2019s browser session in context of an affected site."}, {"lang": "es", "value": "Prima Systems FlexAir, versiones 2.3.38 y anteriores. Los par\u00e1metros enviados a los scripts no se desinfectan correctamente antes de devolverse al usuario, lo que puede permitir que un atacante ejecute c\u00f3digo arbitrario en la sesi\u00f3n del navegador de un usuario en el contexto de un sitio afectado."}], "lastModified": "2022-10-25T15:39:48.303", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:primasystems:flexair:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "175CBF56-BD66-48B3-A3AC-25B4FCD4F601", "versionEndIncluding": "2.3.38"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}