Published on September 17th, 2019 📆 | 6682 Views ⚑
0LogMeIn LastPass up to 4.32.x Clickjacking information disclosure
https://www.ispeech.org/text.to.speech
CVSS Meta Temp Score | Current Exploit Price (β) |
---|---|
2.9 | $0-$5k |
A vulnerability was found in LogMeIn LastPass up to 4.32.x. It has been rated as problematic. This issue affects some unknown processing. The manipulation with an unknown input leads to a information disclosure vulnerability (Clickjacking). Using CWE to declare the problem leads to CWE-451. Impacted is confidentiality.
The weakness was published 09/16/2019. The identification of this vulnerability is CVE-2019-16371 since 09/16/2019. The technical details are unknown and an exploit is not publicly available.
Upgrading to version 4.33.0 eliminates this vulnerability.
Vendor
Name
VulDB Meta Base Score: 3.0
VulDB Meta Temp Score: 2.9
VulDB Base Score: β3.0
VulDB Temp Score: β2.9
VulDB Vector: π
VulDB Reliability: π
VulDB Base Score: π
VulDB Temp Score: π
VulDB Reliability: π
Class: Information disclosure / Clickjacking (CWE-451)
Local: Yes
Remote: No
Availability: π
Status: Not defined
Price Prediction: π
Current Price Estimation: π
0-Day | unlock | unlock | unlock | unlock |
---|---|---|---|---|
Today | unlock | unlock | unlock | unlock |
Threat Intelligence
Threat: π
Adversaries: π
Geopolitics: π
Economy: π
Predictions: π
Remediation: πRecommended: Upgrade
Status: π
0-Day Time: π
Upgrade: LastPass 4.33.0
09/16/2019 Advisory disclosed
09/16/2019 CVE assigned
09/17/2019 VulDB entry created
09/17/2019 VulDB last update
CVE: CVE-2019-16371 (π)Created: 09/17/2019 09:27 AM
Complete: π
Upgrade your account now!
https://vuldb.com/?id.141875
Gloss