Vulnerabilities > CVE-2019-9632 - Unspecified vulnerability in Esafenet Electronic Document Security Management System V3/V5
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
ESAFENET CDG V3 and V5 has an arbitrary file download vulnerability via the fileName parameter in download.jsp because the InstallationPack parameter is mishandled in a /CDGServer3/ClientAjax request.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |