VWE-2019-5261 Printable Version

https://www.vaultwiki.org/pages/Book/Documentation/VWE-2019-5261
This page is a chapter in Info Known Vulnerabilities

This page has been seen 195,093 times.

- Created by
  pegasus
  on October 12, 2019

Common Name None
VWE-ID VWE-2019-5261
Related Report None
Severity HIGH
Exploit Difficulty NORMAL
Platform Affects all platforms supported by the vulnerable versions.
Description Subscription Management. Imported subscriptions don't flag the correct user as having active subscriptions. While subscriptions are disabled globally, those users could be unable to manage their imported subscriptions if they don't have non-imported subscriptions too. Does not affect Lite versions.

Discovered June 6, 2019
Resolved June 7, 2019
Patches Available 4.1.0 Beta 2
4.0.26 Patch Level 1
4.0.25 Patch Level 3
4.0.24 Patch Level 5
4.0.23 Patch Level 7
The versions listed below are known to be affected by this issue. If you are using one of those versions, you should update to a newer release that has no known vulnerabilities.

Common Name	None
VWE-ID	VWE-2019-5261
Related Report	None
Severity	HIGH
Exploit Difficulty	NORMAL
Platform	Affects all platforms supported by the vulnerable versions.
Description	Subscription Management. Imported subscriptions don't flag the correct user as having active subscriptions. While subscriptions are disabled globally, those users could be unable to manage their imported subscriptions if they don't have non-imported subscriptions too. Does not affect Lite versions.
Discovered	June 6, 2019
Resolved	June 7, 2019
Patches Available	4.1.0 Beta 2 4.0.26 Patch Level 1 4.0.25 Patch Level 3 4.0.24 Patch Level 5 4.0.23 Patch Level 7