Vulnerabilities > CVE-2019-6716 - Authorization Bypass Through User-Controlled Key vulnerability in Logonbox Nervepoint Access Manager 1.2/1.3/1.4
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
HIGH Availability impact
HIGH Summary
An unauthenticated Insecure Direct Object Reference (IDOR) in Wicket Core in LogonBox Nervepoint Access Manager 2013 through 2017 allows a remote attacker to enumerate internal Active Directory usernames and group names, and alter back-end server jobs (backup and synchronization jobs), which could allow for the possibility of a Denial of Service attack via a modified jobId parameter in a runJob.html GET request.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 21 |
Common Weakness Enumeration (CWE)
Exploit-Db
| file | exploits/multiple/webapps/46254.txt |
| id | EDB-ID:46254 |
| last seen | 2019-01-28 |
| modified | 2019-01-28 |
| platform | multiple |
| port | |
| published | 2019-01-28 |
| reporter | Exploit-DB |
| source | https://www.exploit-db.com/download/46254 |
| title | LogonBox Limited / Hypersocket Nervepoint Access Manager - Unauthenticated Insecure Direct Object Reference |
| type | webapps |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/151373/logonbox-insecure.txt |
| id | PACKETSTORM:151373 |
| last seen | 2019-01-29 |
| published | 2019-01-29 |
| reporter | 0v3rride |
| source | https://packetstormsecurity.com/files/151373/LongBox-Limited-Access-Manager-Insecure-Direct-Object-Reference.html |
| title | LongBox Limited Access Manager Insecure Direct Object Reference |