Published on August 25th, 2019 📆 | 3479 Views ⚑0
openITCOCKPIT up to 3.7.0 Code Injection privilege escalation
|CVSS Meta Temp Score||Current Exploit Price (≈)|
A vulnerability was found in openITCOCKPIT up to 3.7.0 and classified as critical. This issue affects an unknown functionality. The manipulation with an unknown input leads to a privilege escalation vulnerability (Code Injection). Using CWE to declare the problem leads to CWE-94. Impacted is confidentiality, integrity, and availability.
The weakness was shared 08/23/2019. The identification of this vulnerability is CVE-2019-15490 since 08/22/2019. Neither technical details nor an exploit are publicly available.
Upgrading to version 3.7.1 eliminates this vulnerability.
VulDB Meta Base Score: 5.5
VulDB Meta Temp Score: 5.3
Status: Not defined
Price Prediction: 🔍
Current Price Estimation: 🔒
0-Day unlock unlock unlock unlock Today unlock unlock unlock unlock
0-Day Time: 🔒
Upgrade: openITCOCKPIT 3.7.1
08/22/2019 CVE assigned Use the official API to access entries easily!
08/23/2019 +1 days Advisory disclosed
08/24/2019 +1 days VulDB entry created
08/24/2019 +0 days VulDB last update
CVE: CVE-2019-15490 (🔒)
See also: 🔒Created: 08/24/2019 11:00 AM
Use the official API to access entries easily!