CVE-2019-15088

2019-09-2013:42:40

mitre

www.cve.org

AI Score

9.4

Confidence

High

EPSS

0.002

Percentile

64.7%

JSON

An issue was discovered in PRiSE adAS 1.7.0. Password hashes are compared using the equality operator. Thus, under specific circumstances, it is possible to bypass login authentication.

References

www.adas-sso.com/es/extra/download.php

security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas