CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-16354

The File Session Manager in Beego 1.10.0 allows local users to read session files because there is a race condition involving file creation within a directory with weak permissions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.6%

CVSS Severity

CVSS v3 Score 4.7

CVSS v2 Score 1.9

References

https://github.com/astaxie/beego/issues/3763
https://github.com/astaxie/beego/issues/3763

Products affected by CVE-2019-16354

Beego » Beego » Version: 1.10.0

cpe:2.3:a:beego:beego:1.10.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-16354

Products

Pricing

Contact Us