CVE-2018-18254

2019-03-1515:00:00

mitre

www.cve.org

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.2%

JSON

An issue was discovered in CapMon Access Manager 5.4.1.1005. An unprivileged user can read the cal_whitelist table in the Custom App Launcher (CAL) database, and potentially gain privileges by placing a Trojan horse program at an app pathname.

References

improsec.com/tech-blog/cam1