Medium severity6.5NVD Advisory· Published Oct 7, 2019· Updated Jun 17, 2026
CVE-2019-15749
CVE-2019-15749
Description
SITOS six Build v6.2.1 allows a user to change their password and recovery email address without requiring them to confirm the change with their old password. This would allow an attacker with access to the victim's account (e.g., via XSS or an unattended workstation) to change that password and address.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- SITOS/six Builddescription
Patches
Vulnerability mechanics
References
1- www.contextis.com/en/resources/advisories/cve-2019-15749nvdThird Party Advisory
News mentions
0No linked articles in our index yet.