1. Home
  2. CVE Database
  3. CVE-2019-5722
CRITICAL · 9.8

CVE-2019-5722

An issue was discovered in portier vision 4.4.4.2 and 4.4.4.6. Due to a lack of user input validation in parameter handling, it has various SQL injections, including on the login form, and on the sear...

Vulnerability Description

An issue was discovered in portier vision 4.4.4.2 and 4.4.4.6. Due to a lack of user input validation in parameter handling, it has various SQL injections, including on the login form, and on the search form for a key ring number.

CVSS Score

9.8

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
PortierPortier4.4.4.2

Related Weaknesses (CWE)

CWE-89

References

FAQ

What is CVE-2019-5722?

CVE-2019-5722 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An issue was discovered in portier vision 4.4.4.2 and 4.4.4.6. Due to a lack of user input validation in parameter handling, it has various SQL injections, including on the login form, and on the sear...

How severe is CVE-2019-5722?

CVE-2019-5722 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2019-5722?

Check the references section above for vendor advisories and patch information. Affected products include: Portier Portier.