7.2
CVSSv2

CVE-2019-13539

Published: 08/11/2019 Updated: 14/11/2019
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

Medtronic Valleylab FT10 and FX8 products could allow a local authenticated malicious user to bypass security restrictions, caused by an issue when network-based logons are disabled when using descrypt algorithm for OS password hashing. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain local shell access and access these hashes.

Vulnerability Trend