CVE-2019-5891

2019-04-0115:23:39

mitre

www.cve.org

AI Score

9.3

Confidence

High

EPSS

0.003

Percentile

68.8%

JSON

An issue was discovered in OverIT Geocall 6.3 before build 2:346977. An unauthenticated servlet allows an attacker to obtain a cookie of an authenticated user, and login to the web application.

References

web.archive.org/web/20200327142627/https://www.quantumleap.it/geocall-v-6-3-multiple-vulnerabilities/

www.quantumleap.it/geocall-v-6-3-multiple-vulnerabilities/