What is CVE-2019-14251?

CVE-2019-14251 is a vulnerability in N/a. Published 2019-12-09.

Is CVE-2019-14251 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2019-14251

An issue was discovered in T24 in TEMENOS Channels R15.01. The login page presents JavaScript functions to access a document on the server once successfully authenticated. However, an attacker can leverage downloadDocServer() to traverse t…

EPSS: 0.725 (98.8th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

20142995/nuclei-templates
ARPSyndicate/kenzer-templates

References

github.com/kmkz/exploit/blob/master/CVE-2019-14251-TEMENOS-T24.txt (x_refsource_MISC)

Frequently asked questions

What is CVE-2019-14251?: CVE-2019-14251 is a vulnerability in N/a. Published 2019-12-09.
Is CVE-2019-14251 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.