{"containers": {"cna": {"affected": [{"product": "Multiple MOTEX products", "vendor": "MOTEX.Inc", "versions": [{"status": "affected", "version": "LanScope Cat client program (MR) and LanScope Cat client program (MR)LanScope Cat detection agent (DA) prior to Ver.9.2.1.0, LanScope Cat server monitoring agent (SA, SAE) prior to Ver.9.2.2.0, LanScope An prior to Ver 2.7.7.0 (LanScope An 2 series), and LanScope An prior to Ver 3.0.8.1 (LanScope An 3 series)"}]}], "descriptions": [{"lang": "en", "value": "Privilege escalation vulnerability in Multiple MOTEX products (LanScope Cat client program (MR) and LanScope Cat client program (MR)LanScope Cat detection agent (DA) prior to Ver.9.2.1.0, LanScope Cat server monitoring agent (SA, SAE) prior to Ver.9.2.2.0, LanScope An prior to Ver 2.7.7.0 (LanScope An 2 series), and LanScope An prior to Ver 3.0.8.1 (LanScope An 3 series)) allow authenticated attackers to obtain unauthorized privileges and execute arbitrary code."}], "problemTypes": [{"descriptions": [{"description": "Privilege escalation", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-12-26T15:16:50.000Z", "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "shortName": "jpcert"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.motex.co.jp/news/news_topics/2019/release191202/"}, {"tags": ["x_refsource_MISC"], "url": "http://jvn.jp/en/jp/JVN49068796/index.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "vultures@jpcert.or.jp", "ID": "CVE-2019-6026", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Multiple MOTEX products", "version": {"version_data": [{"version_value": "LanScope Cat client program (MR) and LanScope Cat client program (MR)LanScope Cat detection agent (DA) prior to Ver.9.2.1.0, LanScope Cat server monitoring agent (SA, SAE) prior to Ver.9.2.2.0, LanScope An prior to Ver 2.7.7.0 (LanScope An 2 series), and LanScope An prior to Ver 3.0.8.1 (LanScope An 3 series)"}]}}]}, "vendor_name": "MOTEX.Inc"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Privilege escalation vulnerability in Multiple MOTEX products (LanScope Cat client program (MR) and LanScope Cat client program (MR)LanScope Cat detection agent (DA) prior to Ver.9.2.1.0, LanScope Cat server monitoring agent (SA, SAE) prior to Ver.9.2.2.0, LanScope An prior to Ver 2.7.7.0 (LanScope An 2 series), and LanScope An prior to Ver 3.0.8.1 (LanScope An 3 series)) allow authenticated attackers to obtain unauthorized privileges and execute arbitrary code."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Privilege escalation"}]}]}, "references": {"reference_data": [{"name": "https://www.motex.co.jp/news/news_topics/2019/release191202/", "refsource": "MISC", "url": "https://www.motex.co.jp/news/news_topics/2019/release191202/"}, {"name": "http://jvn.jp/en/jp/JVN49068796/index.html", "refsource": "MISC", "url": "http://jvn.jp/en/jp/JVN49068796/index.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T20:16:24.365Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.motex.co.jp/news/news_topics/2019/release191202/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://jvn.jp/en/jp/JVN49068796/index.html"}]}]}, "cveMetadata": {"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce", "assignerShortName": "jpcert", "cveId": "CVE-2019-6026", "datePublished": "2019-12-26T15:16:50.000Z", "dateReserved": "2019-01-10T00:00:00.000Z", "dateUpdated": "2024-08-04T20:16:24.365Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:motex:lanscope_an:*:*:*:*:*:*:*:*", "matchCriteriaId": "186BFA3E-BEB3-4B25-A12C-050C82DD2BAC", "versionEndExcluding": "2.7.7.0", "versionStartIncluding": "2.0.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:motex:lanscope_an:*:*:*:*:*:windows:*:*", "matchCriteriaId": "81CB465A-3610-433C-9E56-6C9411E86D97", "versionEndExcluding": "3.0.8.1", "versionStartIncluding": "3.0.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:motex:lanscope_cat_client_program:*:*:*:*:*:*:*:*", "matchCriteriaId": "12F8DECD-9C57-482A-9A2C-8199932AF2BF", "versionEndExcluding": "8.4.3.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:motex:lanscope_cat_client_program:*:*:*:*:*:*:*:*", "matchCriteriaId": "2AB937BF-97D2-4C8B-8838-D46810CC8FCF", "versionEndIncluding": "9.0.1.9", "versionStartIncluding": "9.0.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:motex:lanscope_cat_client_program:*:*:*:*:*:*:*:*", "matchCriteriaId": "037D913C-5CD4-41EB-BB5F-1E5DE4636A63", "versionEndIncluding": "9.1.0.8", "versionStartIncluding": "9.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:motex:lanscope_cat_client_program:*:*:*:*:*:*:*:*", "matchCriteriaId": "A317E8D1-0137-45C7-AFAB-A4A870DA775E", "versionEndIncluding": "9.2.0.3", "versionStartIncluding": "9.2.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:motex:lanscope_cat_detection_agent:*:*:*:*:*:*:*:*", "matchCriteriaId": "00E56920-9F6E-46B7-8522-612FBBB90E27", "versionEndExcluding": "8.4.3.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:motex:lanscope_cat_detection_agent:*:*:*:*:*:*:*:*", "matchCriteriaId": "59F2C508-1061-4430-9639-FB8ACAAD3CBE", "versionEndIncluding": "9.0.1.9", "versionStartIncluding": "9.0.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:motex:lanscope_cat_detection_agent:*:*:*:*:*:*:*:*", "matchCriteriaId": "EB8094D8-15B3-4BAA-8F30-624AC39CC0AE", "versionEndIncluding": "9.1.0.8", "versionStartIncluding": "9.1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:motex:lanscope_cat_detection_agent:*:*:*:*:*:*:*:*", "matchCriteriaId": "456A3FA5-9DBE-495B-AD54-DEF8DDA5E384", "versionEndIncluding": "9.2.0.3", "versionStartIncluding": "9.2.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:motex:lanscope_cat_server_monitoring_agent:*:*:*:*:*:*:*:*", "matchCriteriaId": "3ADEE284-42C3-4AAD-ADA8-B8AEBB33B348", "versionEndExcluding": "9.2.2.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Privilege escalation vulnerability in Multiple MOTEX products (LanScope Cat client program (MR) and LanScope Cat client program (MR)LanScope Cat detection agent (DA) prior to Ver.9.2.1.0, LanScope Cat server monitoring agent (SA, SAE) prior to Ver.9.2.2.0, LanScope An prior to Ver 2.7.7.0 (LanScope An 2 series), and LanScope An prior to Ver 3.0.8.1 (LanScope An 3 series)) allow authenticated attackers to obtain unauthorized privileges and execute arbitrary code."}, {"lang": "es", "value": "Una vulnerabilidad de escalada de privilegios en m\u00faltiples productos MOTEX (LanScope Cat Client Program (MR) y LanScope Cat Client Program (MR) LanScope Cat Detection Agent (DA) versiones anteriores a Ver.9.2.1.0, LanScope Cat Server Monitoring Agent (SA, SAE) versiones anteriores a Ver.9.2.2.0, LanScope An versiones anteriores a Ver 2.7.7.0 (LanScope An 2 series) y LanScope An versiones anteriores a Ver 3.0.8.1 (LanScope An 3 series)), permiten a atacantes autenticados alcanzar privilegios no autorizados y ejecutar c\u00f3digo arbitrario."}], "id": "CVE-2019-6026", "lastModified": "2024-11-21T04:45:56.400", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-12-26T16:15:12.310", "references": [{"source": "vultures@jpcert.or.jp", "tags": ["Third Party Advisory"], "url": "http://jvn.jp/en/jp/JVN49068796/index.html"}, {"source": "vultures@jpcert.or.jp", "tags": ["Vendor Advisory"], "url": "https://www.motex.co.jp/news/news_topics/2019/release191202/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://jvn.jp/en/jp/JVN49068796/index.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.motex.co.jp/news/news_topics/2019/release191202/"}], "sourceIdentifier": "vultures@jpcert.or.jp", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}