Vulnerabilities > CVE-2019-5891 - Unspecified vulnerability in Overit Geocall 6.3

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

overit

critical

NVD

Published: 2019-04-01

Updated: 2022-10-14

Summary

An issue was discovered in OverIT Geocall 6.3 before build 2:346977. An unauthenticated servlet allows an attacker to obtain a cookie of an authenticated user, and login to the web application.

Vulnerable Configurations

Part	Description	Count
Application	Overit Overit Geocall 6.3	1

References

https://www.quantumleap.it/geocall-v-6-3-multiple-vulnerabilities/
https://web.archive.org/web/20200327142627/https://www.quantumleap.it/geocall-v-6-3-multiple-vulnerabilities/