CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-5643

Computing For Good's Basic Laboratory Information System (also known as C4G BLIS) version 3.5 and earlier suffers from an instance of CWE-284, "Improper Access Control." As a result, an unauthenticated user may enumerate the user names and facility names in use on a particular installation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.8%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

Products affected by CVE-2019-5643

Gatech » Computing For Good's Basic Laboratory Information System » Version: N/A

cpe:2.3:a:gatech:computing_for_good's_basic_laboratory_information_system:-
Gatech » Computing For Good's Basic Laboratory Information System » Version: 3.3

cpe:2.3:a:gatech:computing_for_good's_basic_laboratory_information_system:3.3
Gatech » Computing For Good's Basic Laboratory Information System » Version: 3.4

cpe:2.3:a:gatech:computing_for_good's_basic_laboratory_information_system:3.4
Gatech » Computing For Good's Basic Laboratory Information System » Version: 3.5

cpe:2.3:a:gatech:computing_for_good's_basic_laboratory_information_system:3.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-5643

Products

Pricing

Contact Us