Axios Italia Axios RE Connection REDefault.aspx privileges management
CVE-2019-25068

6.3MEDIUM

Key Information:

Status
Vendor
CVE Published:
9 June 2022

What is CVE-2019-25068?

A vulnerability classified as critical was found in Axios Italia Axios RE 1.7.0/7.0.0. This vulnerability affects unknown code of the file REDefault.aspx of the component Connection Handler. The manipulation of the argument DBIDX leads to privilege escalation. The attack can be initiated remotely.

Affected Version(s)

Axios RE 1.7.0

Axios RE 7.0.0

References

CVSS V3.1

Score:
6.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

ErPaciocco
.