DOM-Based XSS Vulnerability in GFI Kerio Control by GFI Software
CVE-2019-16414

6.1MEDIUM

Key Information:

Vendor

Gfi

Status
Kerio Control
Vendor
CVE Published:
30 September 2019

What is CVE-2019-16414?

A DOM-based Cross-Site Scripting (XSS) vulnerability in GFI Kerio Control version 9.3.0 allows attackers to inject malicious scripts into the web application. By manipulating the login page, an attacker can exploit this vulnerability to capture users' cleartext credentials. When a victim attempts to login and receives a failure message, The crafted URI involving login/?reason=failure&NTLM= facilitates the retrieval of sensitive information, making it essential for users to apply necessary security measures to protect against such threats.

References

https://twitter.com/haxel0rd/status/1174279811751174144
x_refsource_MISC
http://seclists.org/fulldisclosure/2019/Sep/35
x_refsource_MISC
https://www.youtube.com/watch?v=ZqqR89vzZ_I
x_refsource_MISC

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.