CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-10846

Computrols CBAS 18.0.0 allows Unauthenticated Reflected Cross-Site Scripting vulnerabilities in the login page and password reset page via the username GET parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.023

EPSS Ranking 84.1%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

Products affected by CVE-2019-10846

Computrols » Computrols Building Automation System » Version: 15.0.0

cpe:2.3:a:computrols:computrols_building_automation_system:15.0.0
Computrols » Computrols Building Automation System » Version: 15.0.1

cpe:2.3:a:computrols:computrols_building_automation_system:15.0.1
Computrols » Computrols Building Automation System » Version: 18.0.0

cpe:2.3:a:computrols:computrols_building_automation_system:18.0.0
Computrols » Computrols Building Automation System » Version: 18.0.1

cpe:2.3:a:computrols:computrols_building_automation_system:18.0.1
Computrols » Computrols Building Automation System » Version: 19.0.0

cpe:2.3:a:computrols:computrols_building_automation_system:19.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-10846

Products

Pricing

Contact Us