Skip to main content

Dupscout

2 CVEs product

Monthly

CVE-2020-29659 CRITICAL POC Act Now

A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings&sid=. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Dupscout
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
5.1%
CVE-2018-10566 MEDIUM This Month

XSS exists in Flexense DupScout Enterprise from v10.0.18 to v10.7. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Dupscout
NVD
CVSS 3.0
6.1
EPSS
0.7%
EPSS 5% CVSS 9.8
CRITICAL POC Act Now

A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings&sid=. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Dupscout
NVD Exploit-DB
EPSS 1% CVSS 6.1
MEDIUM This Month

XSS exists in Flexense DupScout Enterprise from v10.0.18 to v10.7. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Dupscout
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy