Vulnerabilities > CVE-2019-10849 - Missing Authorization vulnerability in Computrols Building Automation Software
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
Computrols CBAS 18.0.0 allows unprotected Subversion (SVN) directory / source code disclosure.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
id | EDB-ID:47629 |
last seen | 2019-11-13 |
modified | 2019-11-12 |
published | 2019-11-12 |
reporter | Exploit-DB |
source | https://www.exploit-db.com/download/47629 |
title | CBAS-Web 19.0.0 - Information Disclosure |
Packetstorm
data source | https://packetstormsecurity.com/files/download/155248/ar-2019-009-2.txt |
id | PACKETSTORM:155248 |
last seen | 2019-11-14 |
published | 2019-11-12 |
reporter | LiquidWorm |
source | https://packetstormsecurity.com/files/155248/Computrols-CBAS-Web-19.0.0-Information-Disclosure.html |
title | Computrols CBAS-Web 19.0.0 Information Disclosure |
References
- http://packetstormsecurity.com/files/155248/Computrols-CBAS-Web-19.0.0-Information-Disclosure.html
- http://packetstormsecurity.com/files/155248/Computrols-CBAS-Web-19.0.0-Information-Disclosure.html
- https://applied-risk.com/index.php/download_file/view/196/165
- https://applied-risk.com/index.php/download_file/view/196/165
- https://applied-risk.com/labs/advisories
- https://applied-risk.com/labs/advisories