How severe is CVE-2019-6644?

This vulnerability has a severity rating of CRITICAL with a CVSS score of 9.4 out of 10.

What type of vulnerability is CVE-2019-6644?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2019-6644

CRITICAL Year: 2019

CVSS v3 Score

9.4

Critical

CVSS v2 Score

6.8

Medium

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

Similar to the issue identified in CVE-2018-12120, on versions 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.2, and 12.1.0-12.1.4 BIG-IP will bind a debug nodejs process to all interfaces when invoked. This may expose the process to unauthorized users if the plugin is left in debug mode and the port is accessible.

CVE-2016-2297

CRITICAL

CVSS:9.4(Critical)

Meteocontrol WEB'log Basic 100, Light, Pro, and Pro Unlimited allows remote attackers to execute arbitrary commands via an "access command shell-like feature."

NVD-CWE-Other2016

CVE-2019-20695

CRITICAL

CVSS:9.4(Critical)

Certain NETGEAR devices are affected by disclosure of sensitive information. This affects SRK60 before 2.3.5.106, SRR60 before 2.3.5.106, and SRS60 before 2.3.5.106.

NVD-CWE-Other2019

CVE-2019-20696

CRITICAL

CVSS:9.4(Critical)

Certain NETGEAR devices are affected by disclosure of sensitive information. This affects WAC505 before V5.6.8.3 and WAC510 before V5.6.8.3.

NVD-CWE-Other2019

CVE-2019-4210

CRITICAL

CVSS:9.4(Critical)

IBM QRadar SIEM 7.3.2 could allow a user to bypass authentication exposing certain functionality which could lead to information disclosure or modification of application configuration. IBM X-Force ID...

NVD-CWE-Other2019