Skip to main content
Security Advisory

Panduit IntraVUE

Restrict access to TCP/3306 and TCP/8765. End users should make sure that Windows Firewall is enabled on the IntraVUE server, should add firewall restrictions to prevent access to the IntraVUE server from most systems on their network. Users should modify permissions on IntraVUE system directories and should monitor access to the web application for suspicious and malicious behavior.

Risk Information

affected product:

IntraVUE: v3.1.2

Limited Threat

CVE ID

CVE-2019-0199

CVE-2019-13039

CVE-2019-13043

CVE-2019-13042

CVE-2019-13040

ID

CVE-2019-0199

Source

Dragos

Skill Level

N/A

CVSSV3 BASE / TEMPORAL SCORE

N/A

CVSSV3 vector

N/A

Affecting

  • IntraVUE: v3.1.2
  • Vulnerability Type

    Cross-Site Request Forgery (CSRF)

    Use of Hard-coded Credentials

    Information Disclosure

    Loss of View

    Loss of Control

    Disclosure Timeline

    07/10/2019 - Dragos discloses issue