← Back

CVE-2019-15719

nvd nist
Published: Oct 9, 2019Modified: Nov 21, 2024

JSON object

Loading...
8.0
Vector
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 2.1 / Impact: 5.9
Source: NVD

Description

Altair PBS Professional through 19.1.2 allows Privilege Escalation because an attacker can send a message directly to pbs_mom, which fails to properly authenticate the message. This results in code execution as an arbitrary user.

Affected (5)

Altair
1 product
Pbs Professional
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Altair
Pbs Professional
From 13.0.0 to 13.0.412
Pbs Professional
From 14.0.0 to 14.2.7
Pbs Professional
From 18.0.0 to 18.2.5
Pbs Professional
From 19.1.0 to 19.1.3
Pbs Professional
From 19.2.0 to 19.2.4

References (8)

Source: cve@mitre.org
ExploitThird Party AdvisoryVDB Entry
Source: cve@mitre.org
Third Party Advisory
Source: cve@mitre.org
ExploitThird Party Advisory
Source: cve@mitre.org
Product
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Product

Timeline

No history available yet.