Security Advisory

CVE-2019-19896

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-01-23 20:54:56

Last updated 2024-08-05 02:32:09

Assigner mitre

State PUBLISHED

Description

In IXP EasyInstall 6.2.13723, there is Remote Code Execution via weak permissions on the Engine Service share. The default file permissions of the IXP$ share on the server allows modification of directories and files (e.g., bat-scripts), which allows execution of code in the context of NT AUTHORITYSYSTEM on the target server and clients.

← Browse all CVEs View on cve.org ↗