Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.4
CVSSv3

CVE-2019-19199

Published: 02/10/2020 Updated: 13/10/2020
CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 7.4 | Impact Score: 5.2 | Exploitability Score: 2.2
VMScore: 516
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N

Vulnerability Summary

REDDOXX MailDepot 2032 SP2 2.2.1242 has Insufficient Session Expiration because tokens are not invalidated upon a logout.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

reddoxx maildepot 2032

Exploits

Exploit DB: MailDepot 2032 SP2 Session Expiration
MailDepot version 2032 SP2 (221242) suffers from a session expiration design issue ...

Mailing Lists

Full Disclosure: [SYSS-2019-049] Insufficient Session Expiration (CWE-613) in REDDOXX MailDepot (CVE-2019-19199)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Advisory ID: SYSS-2019-049 Product: MailDepot Manufacturer: REDDOXX GmbH Affected Version(s): 2032 SP2 (221242) Tested Version(s): 2032 SP2 (221242) Vulnerability Type: Insufficient Session Expiration (CWE-613) Risk Level: ...

References

CWE-613https://www.syss.de/pentest-blog/https://www.reddoxx.com/en/products/archiving/http://seclists.org/fulldisclosure/2020/Sep/49https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2019-049.txthttps://nvd.nist.govhttp://seclists.org/fulldisclosure/2020/Sep/49
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36954CVE-2024-36933CVE-2024-24919CVE-2024-36923CVE-2024-2961CVE-2024-36925bypassencryptioncommand injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook