Critical severityNVD Advisory· Published Mar 12, 2019· Updated Aug 4, 2024
CVE-2019-5919
CVE-2019-5919
Description
An incomplete cryptography of the data store function by using hidden tag in Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to obtain information of the stored data, to register invalid value, or alter the value via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
com.nablarch.framework:nablarch-fw-webMaven | < 1.5.1 | 1.5.1 |
Affected products
2- TIS Inc./Nablarch 5v5Range: Nablarch 5, and 5u1 to 5u13
Patches
Vulnerability mechanics
References
6- jvn.jp/en/jp/JVN56542712/index.htmlghsathird-party-advisoryx_refsource_JVNWEB
- github.com/advisories/GHSA-hmx6-gc2p-5p82ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-5919ghsaADVISORY
- github.com/nablarch/nablarch-fw-web/pull/53ghsaWEB
- github.com/nablarch/nablarch-fw-web/pull/54ghsaWEB
- nablarch.atlassian.net/browse/NAB-313ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.