Design/Logic Flaw

2019-03-1515:29:00

PRIOn knowledge base

www.prio-n.com

7.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.2%

JSON

An issue was discovered in CapMon Access Manager 5.4.1.1005. An unprivileged user can read the cal_whitelist table in the Custom App Launcher (CAL) database, and potentially gain privileges by placing a Trojan horse program at an app pathname.

CPENameOperatorVersion
access_managerle5.4.1.1005

CPE	Name	Operator	Version
	access_manager	le	5.4.1.1005

References

improsec.com/tech-blog/cam1