Vulnerabilities > CVE-2019-7272 - Missing Authorization vulnerability in Optergy Enterprise and Proton
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
NONE Availability impact
NONE Summary
Optergy Proton/Enterprise devices allow Username Disclosure.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Common Weakness Enumeration (CWE)
Exploit-Db
id | EDB-ID:47640 |
last seen | 2019-11-13 |
modified | 2019-11-12 |
published | 2019-11-12 |
reporter | Exploit-DB |
source | https://www.exploit-db.com/download/47640 |
title | Optergy 2.3.0a - Username Disclosure |
Packetstorm
data source | https://packetstormsecurity.com/files/download/155259/ar-2019-008-1.txt |
id | PACKETSTORM:155259 |
last seen | 2019-11-14 |
published | 2019-11-12 |
reporter | LiquidWorm |
source | https://packetstormsecurity.com/files/155259/Optergy-BMS-2.0.3a-Account-Reset-Username-Disclosure.html |
title | Optergy BMS 2.0.3a Account Reset / Username Disclosure |
References
- http://packetstormsecurity.com/files/155259/Optergy-BMS-2.0.3a-Account-Reset-Username-Disclosure.html
- http://www.securityfocus.com/bid/108686
- https://applied-risk.com/labs/advisories
- https://www.applied-risk.com/resources/ar-2019-008
- http://packetstormsecurity.com/files/155259/Optergy-BMS-2.0.3a-Account-Reset-Username-Disclosure.html
- https://www.applied-risk.com/resources/ar-2019-008
- https://applied-risk.com/labs/advisories
- http://www.securityfocus.com/bid/108686