// For flags

CVE-2019-11989

 

Severity Score

5.9
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A security vulnerability in HPE IceWall SSO Agent Option and IceWall MFA (Agent module ) could be exploited remotely to cause a denial of service. The versions and platforms of Agent Option modules that are impacted are as follows: 10.0 for Apache 2.2 on RHEL 5 and 6, 10.0 for Apache 2.4 on RHEL 7, 10.0 for Apache 2.4 on HP-UX 11i v3, 10.0 for IIS on Windows, 11.0 for Apache 2.4 on RHEL 7, MFA Proxy 4.0 (Agent module only) for Apache 2.4 on RHEL 7.

Una vulnerabilidad de seguridad en IceWall SSO Agent Option y IceWall MFA (módulo Agent) de HPE podría ser explotada remotamente para causar una denegación de servicio. Las versiones y plataformas de los módulos Agent Option que están afectadas son las siguientes: versión 10.0 para Apache versión 2.2 en RHEL versiones 5 y 6.0, versión 10.0 para Apache versión 2.4 en RHEL versión 7, versión 10.0 para Apache versión 2.4 en HP-UX 11i versión v3, versión 10.0 para IIS en Windows, versión 11.0 para Apache versión 2.4 en RHEL versión 7, MFA Proxy versión 4.0 (solo módulo Agent) para Apache versión 2.4 en RHEL versión 7.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2019-05-13 CVE Reserved
  • 2019-07-19 CVE Published
  • 2023-03-18 EPSS Updated
  • 2024-08-04 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Hp
Search vendor "Hp"
Icewall Sso Agent
Search vendor "Hp" for product "Icewall Sso Agent"
10.0
Search vendor "Hp" for product "Icewall Sso Agent" and version "10.0"
apache
Affected
in Hp
Search vendor "Hp"
Hp-ux
Search vendor "Hp" for product "Hp-ux"
--
Safe
Hp
Search vendor "Hp"
Icewall Sso Agent
Search vendor "Hp" for product "Icewall Sso Agent"
10.0
Search vendor "Hp" for product "Icewall Sso Agent" and version "10.0"
apache
Affected
in Microsoft
Search vendor "Microsoft"
Windows
Search vendor "Microsoft" for product "Windows"
--
Safe
Hp
Search vendor "Hp"
Icewall Sso Agent
Search vendor "Hp" for product "Icewall Sso Agent"
10.0
Search vendor "Hp" for product "Icewall Sso Agent" and version "10.0"
apache
Affected
in Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
5.0
Search vendor "Redhat" for product "Enterprise Linux" and version "5.0"
-
Safe
Hp
Search vendor "Hp"
Icewall Sso Agent
Search vendor "Hp" for product "Icewall Sso Agent"
10.0
Search vendor "Hp" for product "Icewall Sso Agent" and version "10.0"
apache
Affected
in Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
6.0
Search vendor "Redhat" for product "Enterprise Linux" and version "6.0"
-
Safe
Hp
Search vendor "Hp"
Icewall Sso Agent
Search vendor "Hp" for product "Icewall Sso Agent"
10.0
Search vendor "Hp" for product "Icewall Sso Agent" and version "10.0"
apache
Affected
in Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
7.0
Search vendor "Redhat" for product "Enterprise Linux" and version "7.0"
-
Safe
Hp
Search vendor "Hp"
Icewall Sso Agent
Search vendor "Hp" for product "Icewall Sso Agent"
11.0
Search vendor "Hp" for product "Icewall Sso Agent" and version "11.0"
apache
Affected
in Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
7.0
Search vendor "Redhat" for product "Enterprise Linux" and version "7.0"
-
Safe
Hp
Search vendor "Hp"
Mfa Proxy
Search vendor "Hp" for product "Mfa Proxy"
4.0
Search vendor "Hp" for product "Mfa Proxy" and version "4.0"
apache
Affected
in Redhat
Search vendor "Redhat"
Enterprise Linux
Search vendor "Redhat" for product "Enterprise Linux"
7.0
Search vendor "Redhat" for product "Enterprise Linux" and version "7.0"
-
Safe