CVE-2019-17418
CVE-2019-17418
Vexday Risk Score
30Low
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 49.3%KEV nãoPoC —Nuclei simMetasploit —Patch —
Lifecycle
09 Oct 2019Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
An issue was discovered in MetInfo 7.0. There is SQL injection via the admin/?n=language&c=language_general&a=doSearchParameter appno parameter, a different issue than CVE-2019-16997.
Affected products
n/a · n/a