CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-9539

: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ModalWindowPopup.asp of Telos Automated Message Handling System allows a remote attacker to inject arbitrary script into an AMHS session. This issue affects: Telos Automated Message Handling System versions prior to 4.1.5.5.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.9%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://www.kb.cert.org/vuls/id/873161/
https://www.kb.cert.org/vuls/id/873161/

Products affected by CVE-2019-9539

Telos » Automated Message Handling System » Version: Any

cpe:2.3:a:telos:automated_message_handling_system:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-9539

Products

Pricing

Contact Us