Vulnerability Name:

CVE-2019-16328 (CCN-168532)

Assigned:2019-10-03
Published:2019-10-03
Updated:2022-12-02
Summary:
CVSS v3 Severity:7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): High
Availibility (A): None
9.8 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2019-16328

Source: cve@mitre.org
Type: Broken Link
cve@mitre.org

Source: cve@mitre.org
Type: Broken Link
cve@mitre.org

Source: XF
Type: UNKNOWN
rpyc-cve201916328-code-exec(168532)

Source: CCN
Type: RPyC GIT Repository
RPyC

Source: cve@mitre.org
Type: Product, Third Party Advisory
cve@mitre.org

Source: cve@mitre.org
Type: Exploit, Vendor Advisory
cve@mitre.org

Vulnerable Configuration:Configuration CCN 1:
  • cpe:/a:rpyc_project:rpyc:4.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:rpyc_project:rpyc:4.1.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:201916328
    V
    		CVE-2019-16328
    2022-06-30
    oval:org.opensuse.security:def:93611
    P
    		 (Important)
    2022-05-26
    oval:org.opensuse.security:def:113297
    P
    		python36-rpyc-4.1.5-2.7 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:64636
    P
    		Security update for python3 (Moderate)
    2021-12-13
    oval:org.opensuse.security:def:74748
    P
    		Security update for aaa_base (Moderate)
    2021-12-03
    oval:org.opensuse.security:def:64806
    P
    		Security update for python-sqlparse (Moderate)
    2021-12-01
    oval:org.opensuse.security:def:106709
    P
    		python36-rpyc-4.1.5-2.7 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:100324
    P
    		 (Important)
    2021-09-02
    oval:org.opensuse.security:def:63089
    P
    		cyrus-sasl-bdb-2.1.27-2.2 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:63382
    P
    		uuidd-2.36.2-2.1 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:64534
    P
    		Security update for wireshark (Important)
    2021-06-22
    oval:org.opensuse.security:def:62879
    P
    		systemtap-3.2-5.64 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:64694
    P
    		Security update for curl (Moderate)
    2021-05-26
    oval:org.opensuse.security:def:63585
    P
    		libmwaw-0_3-3-0.3.14-4.3.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62911
    P
    		ocaml-libguestfs-devel-1.38.0-3.52 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62883
    P
    		aaa_base-malloccheck-84.87+git20180409.04c9dae-3.6.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62886
    P
    		apache-pdfbox-1.8.12-5.6.3 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:74881
    P
    		Security update for python-rpyc (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64426
    P
    		pam on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63732
    P
    		Security update for xrdp (Important)
    2020-12-01
    oval:org.opensuse.security:def:64427
    P
    		pam_krb5 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63961
    P
    		Security update for java-1_8_0-openjdk (Important)
    2020-12-01
    oval:org.opensuse.security:def:64290
    P
    		less on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:110543
    P
    		Security update for python-rpyc (Moderate)
    2020-05-22
    BACK
    rpyc_project rpyc 4.1.1
    rpyc_project rpyc 4.1.0