var-201812-0552
Vulnerability from variot
An issue was discovered in Rockwell Automation Allen-Bradley PowerMonitor 1000. An unauthenticated user can add/edit/remove administrators because access control is implemented on the client side via a disabled attribute for a BUTTON element. Rockwell Automation Allen-Bradley PowerMonitor 1000 Contains an access control vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. An access control error vulnerability exists in the Web page of Rockwell Automation Allen-Bradley PowerMonitor 1000, which could allow an attacker to add new users with administrator privileges. An attacker may leverage these issues to bypass certain security restrictions, obtain sensitive information and execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. An attacker could exploit this vulnerability to add/edit/remove administrator accounts
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201812-0552",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "powermonitor 1000",
"scope": "eq",
"trust": 1.0,
"vendor": "rockwellautomation",
"version": "1408-em3a-ent_b"
},
{
"model": "powermonitor 1000",
"scope": null,
"trust": 0.8,
"vendor": "rockwell automation",
"version": null
},
{
"model": "automation allen-bradley powermonitor",
"scope": "eq",
"trust": 0.6,
"vendor": "rockwell",
"version": "1000"
},
{
"model": "automation allen-bradley powermonitor 1408-em3a-ent b",
"scope": "eq",
"trust": 0.3,
"vendor": "rockwell",
"version": "1000"
},
{
"model": "kace k1000 systems management appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "dell",
"version": "8.0.318"
},
{
"model": "kace k1000 systems management appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "dell",
"version": "7.0.121306"
},
{
"model": "kace k1000 systems management appliance",
"scope": "eq",
"trust": 0.3,
"vendor": "dell",
"version": "6.4.12075"
},
{
"model": "kace k1000 systems management appliance",
"scope": "ne",
"trust": 0.3,
"vendor": "dell",
"version": "9.0.270"
},
{
"model": "1408-em3a-ent b",
"scope": null,
"trust": 0.2,
"vendor": "powermonitor 1000",
"version": null
}
],
"sources": [
{
"db": "IVD",
"id": "7d82f851-463f-11e9-b027-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-26886"
},
{
"db": "BID",
"id": "106333"
},
{
"db": "BID",
"id": "108538"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014341"
},
{
"db": "NVD",
"id": "CVE-2018-19616"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:rockwellautomation:powermonitor_1000_firmware:1408-em3a-ent_b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:rockwellautomation:powermonitor_1000:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2018-19616"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Kapil Khot,Luca.Chiou",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201812-203"
}
],
"trust": 0.6
},
"cve": "CVE-2018-19616",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Medium",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Partial",
"baseScore": 6.8,
"confidentialityImpact": "Partial",
"exploitabilityScore": null,
"id": "CVE-2018-19616",
"impactScore": null,
"integrityImpact": "Partial",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Medium",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2018-26886",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "7d82f851-463f-11e9-b027-000c29342cb1",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "VHN-130293",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"author": "NVD",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 2.2,
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
{
"attackComplexity": "High",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 8.1,
"baseSeverity": "High",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "CVE-2018-19616",
"impactScore": null,
"integrityImpact": "High",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2018-19616",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "CNVD",
"id": "CNVD-2018-26886",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201812-203",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "IVD",
"id": "7d82f851-463f-11e9-b027-000c29342cb1",
"trust": 0.2,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-130293",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "7d82f851-463f-11e9-b027-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-26886"
},
{
"db": "VULHUB",
"id": "VHN-130293"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014341"
},
{
"db": "NVD",
"id": "CVE-2018-19616"
},
{
"db": "CNNVD",
"id": "CNNVD-201812-203"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "An issue was discovered in Rockwell Automation Allen-Bradley PowerMonitor 1000. An unauthenticated user can add/edit/remove administrators because access control is implemented on the client side via a disabled attribute for a BUTTON element. Rockwell Automation Allen-Bradley PowerMonitor 1000 Contains an access control vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. An access control error vulnerability exists in the Web page of Rockwell Automation Allen-Bradley PowerMonitor 1000, which could allow an attacker to add new users with administrator privileges. \nAn attacker may leverage these issues to bypass certain security restrictions, obtain sensitive information and execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. An attacker could exploit this vulnerability to add/edit/remove administrator accounts",
"sources": [
{
"db": "NVD",
"id": "CVE-2018-19616"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014341"
},
{
"db": "CNVD",
"id": "CNVD-2018-26886"
},
{
"db": "BID",
"id": "106333"
},
{
"db": "BID",
"id": "108538"
},
{
"db": "IVD",
"id": "7d82f851-463f-11e9-b027-000c29342cb1"
},
{
"db": "VULHUB",
"id": "VHN-130293"
}
],
"trust": 2.97
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2018-19616",
"trust": 3.9
},
{
"db": "PACKETSTORM",
"id": "150619",
"trust": 3.1
},
{
"db": "ICS CERT",
"id": "ICSA-19-050-04",
"trust": 3.1
},
{
"db": "BID",
"id": "108538",
"trust": 2.0
},
{
"db": "BID",
"id": "106333",
"trust": 2.0
},
{
"db": "EXPLOIT-DB",
"id": "45937",
"trust": 1.7
},
{
"db": "CNNVD",
"id": "CNNVD-201812-203",
"trust": 0.9
},
{
"db": "CNVD",
"id": "CNVD-2018-26886",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014341",
"trust": 0.8
},
{
"db": "IVD",
"id": "7D82F851-463F-11E9-B027-000C29342CB1",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-130293",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "7d82f851-463f-11e9-b027-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-26886"
},
{
"db": "VULHUB",
"id": "VHN-130293"
},
{
"db": "BID",
"id": "106333"
},
{
"db": "BID",
"id": "108538"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014341"
},
{
"db": "NVD",
"id": "CVE-2018-19616"
},
{
"db": "CNNVD",
"id": "CNNVD-201812-203"
}
]
},
"id": "VAR-201812-0552",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "7d82f851-463f-11e9-b027-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-26886"
},
{
"db": "VULHUB",
"id": "VHN-130293"
}
],
"trust": 1.9
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "7d82f851-463f-11e9-b027-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-26886"
}
]
},
"last_update_date": "2023-12-18T12:56:42.670000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "PowerMonitor 1000",
"trust": 0.8,
"url": "https://ab.rockwellautomation.com/energy-monitoring/1408-powermonitor-1000"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-014341"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-287",
"trust": 1.1
},
{
"problemtype": "CWE-284",
"trust": 0.9
},
{
"problemtype": "CWE-668",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-130293"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014341"
},
{
"db": "NVD",
"id": "CVE-2018-19616"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.7,
"url": "http://packetstormsecurity.com/files/150619/rockwell-automation-allen-bradley-powermonitor-1000-authentication-bypass.html"
},
{
"trust": 3.1,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-19-050-04"
},
{
"trust": 2.9,
"url": "http://www.securityfocus.com/bid/106333"
},
{
"trust": 2.9,
"url": "http://www.securityfocus.com/bid/108538"
},
{
"trust": 1.7,
"url": "https://www.exploit-db.com/exploits/45937/"
},
{
"trust": 1.2,
"url": "https://www.rockwellautomation.com/en_in/overview.page"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-19616"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-19616"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2018-26886"
},
{
"db": "VULHUB",
"id": "VHN-130293"
},
{
"db": "BID",
"id": "106333"
},
{
"db": "BID",
"id": "108538"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014341"
},
{
"db": "NVD",
"id": "CVE-2018-19616"
},
{
"db": "CNNVD",
"id": "CNNVD-201812-203"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "7d82f851-463f-11e9-b027-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-26886"
},
{
"db": "VULHUB",
"id": "VHN-130293"
},
{
"db": "BID",
"id": "106333"
},
{
"db": "BID",
"id": "108538"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014341"
},
{
"db": "NVD",
"id": "CVE-2018-19616"
},
{
"db": "CNNVD",
"id": "CNNVD-201812-203"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2018-12-28T00:00:00",
"db": "IVD",
"id": "7d82f851-463f-11e9-b027-000c29342cb1"
},
{
"date": "2018-12-28T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-26886"
},
{
"date": "2018-12-26T00:00:00",
"db": "VULHUB",
"id": "VHN-130293"
},
{
"date": "2018-11-27T00:00:00",
"db": "BID",
"id": "106333"
},
{
"date": "2019-06-01T00:00:00",
"db": "BID",
"id": "108538"
},
{
"date": "2019-03-18T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-014341"
},
{
"date": "2018-12-26T21:29:02.230000",
"db": "NVD",
"id": "CVE-2018-19616"
},
{
"date": "2018-12-06T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201812-203"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2018-12-28T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-26886"
},
{
"date": "2020-08-24T00:00:00",
"db": "VULHUB",
"id": "VHN-130293"
},
{
"date": "2019-02-22T13:00:00",
"db": "BID",
"id": "106333"
},
{
"date": "2019-06-01T00:00:00",
"db": "BID",
"id": "108538"
},
{
"date": "2019-03-18T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-014341"
},
{
"date": "2020-08-24T17:37:01.140000",
"db": "NVD",
"id": "CVE-2018-19616"
},
{
"date": "2020-08-25T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201812-203"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "network",
"sources": [
{
"db": "BID",
"id": "106333"
},
{
"db": "BID",
"id": "108538"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Rockwell Automation Allen-Bradley PowerMonitor 1000 Access Control Error Vulnerability",
"sources": [
{
"db": "IVD",
"id": "7d82f851-463f-11e9-b027-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-26886"
},
{
"db": "CNNVD",
"id": "CNNVD-201812-203"
}
],
"trust": 1.4
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Design Error",
"sources": [
{
"db": "BID",
"id": "106333"
},
{
"db": "BID",
"id": "108538"
}
],
"trust": 0.6
}
}
Loading...
Loading...
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.