Update CVE-2019-10068.yaml

2021-04-23 14:36:58 +05:30 · 2021-04-23 14:36:58 +05:30 · 3608b6c162
parent 5ce3ebc7f7
commit 3608b6c162
1 changed files with 5 additions and 2 deletions
--- a/cves/2019/CVE-2019-10068.yaml
+++ b/cves/2019/CVE-2019-10068.yaml
@ -6,10 +6,11 @@ info:
  severity: critical
  description: |
    Searches for Kentico CMS installations that are vulnerable to a .NET deserialization vulnerability that could be exploited to achieve remote command execution. Credit to Manoj Cherukuri and Justin LeMay from Aon Cyber Solutions for discovery of the vulnerability.
-  tags: rce,deserialization,kentico,iis
+  tags: cve,cve2019,rce,deserialization,kentico,iis
  reference: |
    - https://www.aon.com/cyber-solutions/aon_cyber_labs/unauthenticated-remote-code-execution-in-kentico-cms/
    - https://packetstormsecurity.com/files/157588/Kentico-CMS-12.0.14-Remote-Command-Execution.html
+    - https://nvd.nist.gov/vuln/detail/CVE-2019-10068

 requests:
  - method: POST
@ -28,4 +29,6 @@ requests:
      - type: word
        words:
          - 'System.InvalidCastException'
-        part: body
+          - 'System.Web.Services.Protocols.SoapException'
+        part: body
+        condition: and