CVE-2019-16062
6.5
MEDIUM
CVSS 3.1
EPSS 0.17%
Description
NETSAS Enigma NMS 65.0.0 and prior does not encrypt sensitive data stored within the SQL database. It is possible for an attacker to expose unencrypted sensitive data.
How to fix CVE-2019-16062
To remediate CVE-2019-16062, upgrade the affected package to a fixed version below.
- Alpine/elfutils—upgrade to 0.174-r0 or later
Is CVE-2019-16062 being exploited?
Low — EPSS is 0.2%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 0.174-r0
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |