Vulnerabilities > CVE-2018-15692 - Incorrect Authorization vulnerability in Inova-Software Inova Partner

047910
CVSS 3.5 - LOW
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
SINGLE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
inova-software
CWE-863
NVD
Published: 2018-11-16
Updated: 2019-10-03

Summary

Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass and data manipulation in certain functions.

Vulnerable Configurations

Part Description Count
Application
Inova-Software
1

Common Weakness Enumeration (CWE)

References