CVE-2019-16066 β€” Unrestricted File Upload in Enigma Network Management Solution

CWE-434 β€” Unrestricted File Upload3 documents3 sources
Severity
8.8HIGHNVD
EPSS
0.4%
top 39.22%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Netsas Enigma Network Management Solution
Timeline
PublishedMar 19
Latest updateMay 24

Description

An unrestricted file upload vulnerability exists in user and system file upload functions in NETSAS Enigma NMS 65.0.0 and prior. This allows an attacker to upload malicious files and perform arbitrary code execution on the system.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages1 packages

πŸ”΄Vulnerability Details

2
GHSA
GHSA-prp2-m2c6-q2w9: An unrestricted file upload vulnerability exists in user and system file upload functions in NETSAS Enigma NMS 65β†—2022-05-24
β–Ά
CVEList
CVE-2019-16066: An unrestricted file upload vulnerability exists in user and system file upload functions in NETSAS Enigma NMS 65β†—2020-03-19
β–Ά
CVE-2019-16066 β€” Unrestricted File Upload | cvebase