HIGH🇬🇧 English

CVE-2019-6026

CVSS 7.8v3.1pub. 2019-12-26upd. 2024-11-21

Privilege escalation vulnerability in Multiple MOTEX products (LanScope Cat client program (MR) and LanScope Cat client program (MR)LanScope Cat detection agent (DA) prior to Ver.9.2.1.0, LanScope Cat server monitoring agent (SA, SAE) prior to Ver.9.2.2.0, LanScope An prior to Ver 2.7.7.0 (LanScope An 2 series), and LanScope An prior to Ver 3.0.8.1 (LanScope An 3 series)) allow authenticated attackers to obtain unauthorized privileges and execute arbitrary code.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Motex Lanscope An

    APP
    Motex
    2.0.0.0 – 2.7.7.0 (bez)3.0.0.0 – 3.0.8.1 (bez)
  • Motex Lanscope Cat Client Program

    APP
    Motex
    < 8.4.3.29.0.0.0 – 9.0.1.99.1.0.0 – 9.1.0.89.2.0.0 – 9.2.0.3
  • Motex Lanscope Cat Detection Agent

    APP
    Motex
    < 8.4.3.29.0.0.0 – 9.0.1.99.1.0.0 – 9.1.0.89.2.0.0 – 9.2.0.3
  • Motex Lanscope Cat Server Monitoring Agent

    APP
    Motex
    < 9.2.2.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCELPE
CWE
Referencje

Powiązane podatności

CVE-2025-61932CRITICAL9.3⚠ KEVPL ✓ten sam vendor

RCE w Motex Lanscope Endpoint Manager — brak weryfikacji źródła żądań

CVE-2026-25785CRITICAL9.3PL ✓ten sam vendor

Path Traversal w Motex Lanscope Endpoint Manager umożliwia RCE