How severe is CVE-2019-6582?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.1 out of 10.

What type of vulnerability is CVE-2019-6582?

This is classified as CWE-285, which is a common weakness in software security.

CVE-2019-6582 - HIGH Severity | CVSS 7.1

Vulnerability Description

A vulnerability has been identified in Siveillance VMS 2017 R2 (All versions < V11.2a), Siveillance VMS 2018 R1 (All versions < V12.1a), Siveillance VMS 2018 R2 (All versions < V12.2a), Siveillance VMS 2018 R3 (All versions < V12.3a), Siveillance VMS 2019 R1 (All versions < V13.1a). An attacker with network access to port 80/TCP can change user-defined event properties without proper authorization. The security vulnerability could be exploited by an authenticated attacker with network access to the affected service. No user interaction is required to exploit this security vulnerability. Successful exploitation compromises integrity of the user-defined event properties and the availability of corresponding functionality. At the time of advisory publication no public exploitation of this security vulnerability was known.

Related Vulnerabilities

CVE-2019-2386

HIGH

CVSS:7.1(High)

After user deletion in MongoDB Server the improper invalidation of authorization sessions allows an authenticated user's session to persist and become conflated with new accounts, if those accounts re...

CWE-2852019

CVE-2021-25353

HIGH

CVSS:7.1(High)

Using empty PendingIntent in Galaxy Themes prior to version 5.2.00.1215 allows local attackers to read/write private file directories of Galaxy Themes application without permission via hijacking the ...

CWE-2852021

CVE-2021-25399

HIGH

CVSS:7.1(High)

Improper configuration in Smart Manager prior to version 11.0.05.0 allows attacker to access the file with system privilege.

CWE-2852021

CVE-2022-0587

HIGH

CVSS:7.1(High)

Improper Authorization in Packagist librenms/librenms prior to 22.2.0.

CWE-2852022

CVE-2022-0821

HIGH

CVSS:7.1(High)

Improper Authorization in GitHub repository orchardcms/orchardcore prior to 1.3.0.

CWE-2852022

CVE-2023-25517

HIGH

CVSS:7.1(High)

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a guest OS may be able to control resources for which it is not authorized, which may lead to information ...

CWE-2852023