Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2019-18641

Published: 20/03/2020 Updated: 29/10/2022
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Sparkdevnetwork

Vulnerability Summary

Rock RMS prior to 1.8.6 mishandles vCard access control within the People/GetVCard/REST controller.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

sparkdevnetwork rock rms

Exploits

Exploit DB: Rock RMS File Upload / Account Takeover / Information Disclosure
Rock RMS suffers from arbitrary file upload, account takeover, and personal information disclosure vulnerabilities Various versions are affected ...

References

NVD-CWE-noinfohttps://github.com/SparkDevNetwork/Rock/compare/1.7.6...1.8.6https://github.com/SparkDevNetwork/Rock/commit/576f5ec22b1c43f123a377612981c68538167c61http://seclists.org/fulldisclosure/2021/Jan/1http://packetstormsecurity.com/files/160766/Rock-RMS-File-Upload-Account-Takeover-Information-Disclosure.htmlhttps://nvd.nist.govhttps://packetstormsecurity.com/files/160766/Rock-RMS-File-Upload-Account-Takeover-Information-Disclosure.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-29895injectCVE-2023-52689CVE-2024-5049CVE-2024-5051privilege escalationphysicalCVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook