Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2019-1006
HistoryJul 15, 2019 - 7:15 p.m.

CVE-2019-1006

2019-07-1519:15:16
Google
osv.dev
2

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

7.1 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

52.6%

JSON

An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka ‘WCF/WIF SAML Token Authentication Bypass Vulnerability’.

Related

symantec 1
prion 1
mskb 34
openvas 25
cve 1
mscve 1
nessus 13
kaspersky 4
talosblog 1
symantec
symantec
Microsoft Windows WCF/WIF SAML Token CVE-2019-1006 Authentication Bypass Vulnerability
2019-07-09 00:00:00
prion
prion
Authentication flaw
2019-07-15 19:15:00
mskb
mskb
Description of the security update for SharePoint Foundation 2010: July 9, 2019
2019-07-09 07:00:00
Description of the security update for SharePoint Foundation 2013: July 9, 2019
2019-07-09 07:00:00
Description of the security update for SharePoint Server 2019: July 9, 2019
2019-07-09 07:00:00
openvas
openvas
Microsoft SharePoint Foundation WCF/WIF SAML Authentication Bypass Vulnerability (KB4475510)
2019-07-10 00:00:00
Microsoft SharePoint Foundation 2013 WCF/WIF SAML Authentication Bypass Vulnerability (KB4475527)
2019-07-10 00:00:00
Microsoft SharePoint Enterprise Server 2013 Multiple Vulnerabilities (KB4475522)
2019-07-10 00:00:00
cve
cve
CVE-2019-1006
2019-07-15 19:15:00
mscve
mscve
WCF/WIF SAML Token Authentication Bypass Vulnerability
2019-07-09 07:00:00
nessus
nessus
Security Updates for Microsoft SharePoint Server (July 2019)
2019-07-09 00:00:00
Security Updates for Microsoft .NET Framework (July 2019)
2019-07-10 00:00:00
KB4507464: Windows Server 2012 July 2019 Security Update (SWAPGS)
2019-07-09 00:00:00
kaspersky
kaspersky
KLA11512 Multiple vulnerabilities in Microsoft Office
2019-07-09 00:00:00
KLA11513 Multiple vulnerabilities in Microsoft Developer Tools
2019-07-09 00:00:00
KLA11819 Multiple vulnerabilities in Microsoft Products (ESU)
2019-07-09 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday — July 2019: Vulnerability disclosures and Snort coverage
2019-07-09 11:51:34

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

7.1 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

52.6%

JSON
Related for OSV:CVE-2019-1006
symantec1prion1mskb34openvas25cve1mscve1nessus13kaspersky4talosblog1