CVE-2010-1596 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.8 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:P/I:P/A:P

Base Score

CVSS 3.x

EPSS Score

Percentile: 62%

Affected Products (NVD)

Vendor	Product	Version
sitracker	support_incident_tracker	𝑥 ≤ 3.50
sitracker	support_incident_tracker	3.21
sitracker	support_incident_tracker	3.22
sitracker	support_incident_tracker	3.22pl1:pl1
sitracker	support_incident_tracker	3.23
sitracker	support_incident_tracker	3.24
sitracker	support_incident_tracker	3.24:beta-2
sitracker	support_incident_tracker	3.30
sitracker	support_incident_tracker	3.30:beta2
sitracker	support_incident_tracker	3.31
sitracker	support_incident_tracker	3.32
sitracker	support_incident_tracker	3.33
sitracker	support_incident_tracker	3.35
sitracker	support_incident_tracker	3.35:beta1
sitracker	support_incident_tracker	3.36
sitracker	support_incident_tracker	3.40
sitracker	support_incident_tracker	3.40:beta1
sitracker	support_incident_tracker	3.41
sitracker	support_incident_tracker	3.45
sitracker	support_incident_tracker	3.45:beta1
sitracker	support_incident_tracker	3.50:beta1

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-287 - Improper Authentication
When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.

References

http://bugs.sitracker.org/view.php?id=1047

http://osvdb.org/61945

http://secunia.com/advisories/38329

http://sitracker.org/forum/viewtopic.php?f=4&t=1416979&p=2292

http://sitracker.org/wiki/ReleaseNotes351

http://www.securityfocus.com/bid/37949

https://exchange.xforce.ibmcloud.com/vulnerabilities/55871

http://bugs.sitracker.org/view.php?id=1047

http://osvdb.org/61945

http://secunia.com/advisories/38329

http://sitracker.org/forum/viewtopic.php?f=4&t=1416979&p=2292

http://sitracker.org/wiki/ReleaseNotes351

http://www.securityfocus.com/bid/37949

https://exchange.xforce.ibmcloud.com/vulnerabilities/55871