Unrated severityNVD Advisory· Published Jun 18, 2020· Updated Aug 4, 2024
CVE-2019-13033
CVE-2019-13033
Description
In CISOfy Lynis 2.x through 2.7.5, the license key can be obtained by looking at the process list when a data upload is being performed. This license can be used to upload data to a central Lynis server. Although no data can be extracted by knowing the license key, it may be possible to upload the data of additional scans.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- CISOfy/Lynisdescription
Patches
Vulnerability mechanics
References
4- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JDCHEKNR3HPJRNHE5PYKFH5GNBADTPA7/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBFHIX6RTHCK37FXMAAXP4KGAMLUFDUD/mitrevendor-advisoryx_refsource_FEDORA
- cisofy.com/security/cve/cve-2019-13033/mitrex_refsource_CONFIRM
- lists.debian.org/debian-lts-announce/2020/06/msg00024.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.