Unauthenticated Access to Sensitive Data via Windows SMB Protocol in Bosch Access Professional Edition (APE) 3.8
CVE-2019-11899 · HIGH Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
An unauthenticated attacker can achieve unauthorized access to sensitive data by exploiting Windows SMB protocol on a client installation. With Bosch Access Professional Edition (APE) 3.8, client installations need to be authorized by the APE administrator.
Learn more about our Web Application Penetration Testing UK.