A CVSS score 6.1 (AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H) severity vulnerability discovered by ‘Esteban Ruiz (mr_me) of Source Incite’ was reported to the affected vendor on: 2018-08-24, 132 days ago. The vendor is given until 2018-12-22 to publish a fix or workaround. Once the vendor has created and tested a patch we will coordinate the release of a public advisory.