CVE-2019-14480

Critical

AdRem NetCrunch 10.6.0.4587 has an Improper Session Handling vulnerability in the NetCrunch web client, which can lead to an authentication…

mitre·CWE-200·Published 2020-12-16

CVSS

9.8

EPSS

0.01

KEV

Exploits

cve.orgen

175 chars

AdRem NetCrunch 10.6.0.4587 has an Improper Session Handling vulnerability in the NetCrunch web client, which can lead to an authentication bypass or escalation of privileges.

NVDen

175 chars

AdRem NetCrunch 10.6.0.4587 has an Improper Session Handling vulnerability in the NetCrunch web client, which can lead to an authentication bypass or escalation of privileges.

AdRem NetCrunch versión 10.6.0.4587, presenta una vulnerabilidad de Manejo de Sesión Inapropiada en el cliente web NetCrunch, que puede conllevar a una omisión de autenticación o una escalada de privilegios

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	7.5	10.0	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P
3.1	Primary	NVD	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H