Skip to main content

Bestinformed

2 CVEs product

Monthly

CVE-2019-6266 CRITICAL Act Now

Cordaware bestinformed Microsoft Windows client before 6.2.1.0 is affected by insecure SSL certificate verification and insecure access patterns. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Bestinformed
NVD
CVSS 3.0
9.8
EPSS
1.2%
CVE-2019-6265 HIGH This Week

The Scripting and AutoUpdate functionality in Cordaware bestinformed Microsoft Windows client versions before 6.2.1.0 are affected by insecure implementations which allow remote attackers to execute. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Bestinformed
NVD
CVSS 3.0
7.8
EPSS
0.6%
EPSS 1% CVSS 9.8
CRITICAL Act Now

Cordaware bestinformed Microsoft Windows client before 6.2.1.0 is affected by insecure SSL certificate verification and insecure access patterns. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Bestinformed
NVD
EPSS 1% CVSS 7.8
HIGH This Week

The Scripting and AutoUpdate functionality in Cordaware bestinformed Microsoft Windows client versions before 6.2.1.0 are affected by insecure implementations which allow remote attackers to execute. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Microsoft Bestinformed
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy