eClass platform < ip.2.5.10.2.1 allows an attacker to use GETS method to request /admin page to bypass the password validation and access management page.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: twcert
Published: 2019-07-25T16:25:39.710313Z
Updated: 2024-09-17T03:59:32.329Z
Reserved: 2019-03-19T00:00:00
Link: CVE-2019-9884
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-07-25T17:15:14.473
Modified: 2020-10-16T12:56:28.853
Link: CVE-2019-9884
Redhat
No data.