CVE-2019-5919

Severity CVSS v4.0:
Pending analysis
Type:
CWE-327 Use of a Broken or Risky Cryptographic Algorithm
Publication date:
12/03/2019
Last modified:
21/07/2021

Description

An incomplete cryptography of the data store function by using hidden tag in Nablarch 5 (5, and 5u1 to 5u13) allows remote attackers to obtain information of the stored data, to register invalid value, or alter the value via unspecified vectors.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:nablarch_project:nablarch:5:*:*:*:*:*:*:*
cpe:2.3:a:nablarch_project:nablarch:5u1:*:*:*:*:*:*:*
cpe:2.3:a:nablarch_project:nablarch:5u13:*:*:*:*:*:*:*