CVE-2019-1712409.10.2019, 16:15Kramer VIAware 2.5.0719.1034 has Incorrect Access Control.EnginsightProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVectorNISTNIST9.8 CRITICALNETWORKLOWNONECVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HmitreCNA------CVEADP------Base ScoreCVSS 3.xEPSS ScorePercentile: 95%VendorProductVersionkrameravviaware2.5.0719.1034𝑥= Vulnerable software versionsKnown Exploits!http://packetstormsecurity.com/files/166541/Kramer-VIAware-2.5.0719.1034-Remote-Code-Execution.htmlhttps://github.com/hessandrew/CVE-2019-17124http://packetstormsecurity.com/files/166541/Kramer-VIAware-2.5.0719.1034-Remote-Code-Execution.htmlhttps://github.com/hessandrew/CVE-2019-17124Common Weakness EnumerationCWE-276 - Incorrect Default PermissionsDuring installation, installed file permissions are set to allow anyone to modify those files.Referenceshttp://packetstormsecurity.com/files/166541/Kramer-VIAware-2.5.0719.1034-Remote-Code-Execution.htmlhttps://github.com/hessandrew/CVE-2019-17124http://packetstormsecurity.com/files/166541/Kramer-VIAware-2.5.0719.1034-Remote-Code-Execution.htmlhttps://github.com/hessandrew/CVE-2019-17124