EUVD-2019-19239

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Multi modules of MailSherlock MSR35 and MSR45 have a CSRF vulnerability for privilege escalation.

Reporter	Title	Published	Views	Family All 6
CVE	CVE-2019-9883	3 Jun 201918:03	–	cve
Cvelist	CVE-2019-9883 Multi modules of MailSherlock MSR35 and MSR45 lead to a CSRF vulnerability. It allows attacker to elevate privilege of specific account.	3 Jun 201918:03	–	cvelist
NVD	CVE-2019-9883	3 Jun 201918:29	–	nvd
OSV	CVE-2019-9883	3 Jun 201918:29	–	osv
Prion	Cross site request forgery (csrf)	3 Jun 201918:29	–	prion
RedhatCVE	CVE-2019-9883	22 May 202508:54	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "8ea5c195-c49b-35dd-8c28-0bde6368b9f2",
        "vendor": {
          "name": "OAKlouds"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "13f24070-77b0-3db4-a344-bd826594bd4b",
        "product": {
          "name": "MailSherlock MSR35"
        },
        "product_version": "iSherlock-base <1.5-328"
      },
      {
        "id": "3b03cc50-60a7-3543-801f-7ae655396276",
        "product": {
          "name": "MailSherlock MSR35"
        },
        "product_version": "iSherlock-sysinfo <1.5-196"
      },
      {
        "id": "a641ebf5-d369-3c6c-99df-548cf837bb2a",
        "product": {
          "name": "MailSherlock MSR35"
        },
        "product_version": "iSherlock-user <1.5-127"
      },
      {
        "id": "a9e6db36-d88b-31a5-9013-e7ddd1215b77",
        "product": {
          "name": "MailSherlock MSR35"
        },
        "product_version": "iSherlock-useradmin <1.5-239"
      },
      {
        "id": "ba4d5a41-da6f-35b3-a051-46c8d7c80e26",
        "product": {
          "name": "MailSherlock MSR45"
        },
        "product_version": "iSherlock-base <4.5-206"
      },
      {
        "id": "c16d4c19-48a1-374c-a1ae-80fd594dcafe",
        "product": {
          "name": "MailSherlock MSR45"
        },
        "product_version": "iSherlock-user <4.5-81"
      },
      {
        "id": "d52c083f-9c95-3e34-ab4b-a2015e8471d1",
        "product": {
          "name": "MailSherlock MSR45"
        },
        "product_version": "iSherlock-useradmin <4.5-106"
      },
      {
        "id": "e4de78a1-d13a-3bb1-8b4b-2f80656bf8d6",
        "product": {
          "name": "MailSherlock MSR45"
        },
        "product_version": "iSherlock-sysinfo <4.5-109"
      }
    ]
  }
]

Source	Link
tvn	www.tvn.twcert.org.tw/taiwanvn/TVN-201904003
surl	www.surl.twcert.org.tw/mChNi
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

8.8High risk

Vulners AI Score8.8

CVSS 38.8

CVSS 26.8

EPSS0.00145