CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-14914

An issue was discovered in PRiSE adAS 1.7.0. The path is not properly escaped in the medatadata_del method, leading to an arbitrary file read and deletion via Directory Traversal.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.5%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 7.5

References

http://www.adas-sso.com/es/extra/download.php
https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas
http://www.adas-sso.com/es/extra/download.php
https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas

Products affected by CVE-2019-14914

Prise » Adas » Version: 1.7.0

cpe:2.3:a:prise:adas:1.7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-14914

Products

Pricing

Contact Us