Arbitrary Code Execution in Expedition Migration Tool 1.1.8 and Earlier

Arbitrary Code Execution in Expedition Migration Tool 1.1.8 and Earlier

CVE-2019-1570 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the LDAP server settings.

Learn more about our Cis Benchmark Audit For Server Software.