CVE-2019-10990

CVE-2019-10990

Vendor N/A
Product Red Lion Controls Crimson (Windows configuration software)
Weakness CWE-321
Published September 23, 2019
Last update June 2, 2026

CVSS base score

What the vulnerability does

01Description

Red Lion Controls Crimson, version 3.0 and prior and version 3.1 prior to release 3112.00, uses a hard-coded password to encrypt protected files in transit and at rest, which may allow an attacker to access configuration files.

Key dates

02Disclosure timeline

September 23, 2019 CVE published
June 2, 2026 Record updated