6.8

CVE-2019-6517

EPSS 0.12%
Veröffentlicht 06.02.2019 21:29:00
Zuletzt bearbeitet 21.11.2024 04:46:36
Quelle ics-cert@hq.dhs.gov
CVE-Watchlists
Login
Unerledigt
Login

BD FACSLyric Research Use Only, Windows 10 Professional Operating System, U.S. and Malaysian Releases, between November 2017 and November 2018 and BD FACSLyric IVD Windows 10 Professional Operating System US release does not properly enforce user access control to privileged accounts, which may allow for unauthorized access to administrative level functions.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Bd ≫ Facslyric Version-

Bd ≫ Facslyric Ivd Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.12%	0.312

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.8	0.9	5.9	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

http://www.securityfocus.com/bid/106766

Third Party Advisory

VDB Entry

https://ics-cert.us-cert.gov/advisories/ICSMA-19-029-02

Third Party Advisory

US Government Resource

https://nvd.nist.gov/vuln/detail/CVE-2019-6517

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2019-6517

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2019-6517

EUVD