Skip to main content

Insight

17 CVEs product

Monthly

CVE-2023-45892 HIGH This Week

An issue discovered in the Order and Invoice pages in Floorsight Insights Q3 2023 allows an unauthenticated remote attacker to view sensitive customer information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Insight
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
CVE-2023-28353 HIGH POC This Week

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE File Upload Microsoft Insight
NVD
CVSS 3.1
8.8
EPSS
1.4%
CVE-2023-28352 HIGH POC This Week

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated high severity (CVSS 7.4), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Microsoft Authentication Bypass Insight
NVD
CVSS 3.1
7.4
EPSS
0.7%
CVE-2023-28351 LOW POC Monitor

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Insight
NVD
CVSS 3.1
3.3
EPSS
0.3%
CVE-2023-28350 MEDIUM POC This Month

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE XSS Microsoft Insight
NVD
CVSS 3.1
6.1
EPSS
1.1%
CVE-2023-28349 HIGH POC This Week

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Microsoft Insight
NVD
CVSS 3.1
8.8
EPSS
1.2%
CVE-2023-28348 HIGH POC This Week

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Insight
NVD
CVSS 3.1
7.4
EPSS
0.4%
CVE-2023-28347 CRITICAL POC Act Now

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE XSS Microsoft Insight
NVD
CVSS 3.1
9.6
EPSS
2.8%
CVE-2023-28346 HIGH POC This Week

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Insight
NVD
CVSS 3.1
7.3
EPSS
0.9%
CVE-2023-28345 MEDIUM POC This Month

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Insight
NVD
CVSS 3.1
4.6
EPSS
0.3%
CVE-2023-28344 HIGH POC This Week

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Insight
NVD
CVSS 3.1
7.1
EPSS
0.9%
CVE-2019-12591 HIGH This Week

NETGEAR Insight Cloud with firmware before Insight 5.6 allows remote authenticated users to achieve command injection. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection Insight
NVD
CVSS 3.0
7.6
EPSS
0.9%
CVE-2019-6510 HIGH POC This Week

An issue was discovered in creditease-sec insight through 2018-09-11. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Insight
NVD GitHub
CVSS 3.0
8.8
EPSS
0.7%
CVE-2019-6509 HIGH POC This Week

An issue was discovered in creditease-sec insight through 2018-09-11. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Insight
NVD GitHub
CVSS 3.0
8.8
EPSS
0.7%
CVE-2019-6508 HIGH POC This Week

An issue was discovered in creditease-sec insight through 2018-09-11. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Insight
NVD GitHub
CVSS 3.0
8.8
EPSS
0.7%
CVE-2019-6507 HIGH POC This Week

An issue was discovered in creditease-sec insight through 2018-09-11. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Insight
NVD GitHub
CVSS 3.0
8.8
EPSS
0.7%
CVE-2016-1562 MEDIUM This Month

The REST API in the DTE Energy Insight application before 1.7.8 for Android allows remote authenticated users to obtain unspecified customer information via a SQL expression in the filter parameter. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Google Information Disclosure Insight
NVD
CVSS 3.0
4.3
EPSS
0.3%
EPSS 1% CVSS 7.5
HIGH This Week

An issue discovered in the Order and Invoice pages in Floorsight Insights Q3 2023 allows an unauthenticated remote attacker to view sensitive customer information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Insight
NVD GitHub
EPSS 1% CVSS 8.8
HIGH POC This Week

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE File Upload Microsoft +1
NVD
EPSS 1% CVSS 7.4
HIGH POC This Week

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated high severity (CVSS 7.4), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Microsoft Authentication Bypass Insight
NVD
EPSS 0% CVSS 3.3
LOW POC Monitor

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Insight
NVD
EPSS 1% CVSS 6.1
MEDIUM POC This Month

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE XSS Microsoft +1
NVD
EPSS 1% CVSS 8.8
HIGH POC This Week

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Microsoft Insight
NVD
EPSS 0% CVSS 7.4
HIGH POC This Week

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Insight
NVD
EPSS 3% CVSS 9.6
CRITICAL POC Act Now

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE XSS Microsoft +1
NVD
EPSS 1% CVSS 7.3
HIGH POC This Week

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Insight
NVD
EPSS 0% CVSS 4.6
MEDIUM POC This Month

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Insight
NVD
EPSS 1% CVSS 7.1
HIGH POC This Week

An issue was discovered in Faronics Insight 10.0.19045 on Windows. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Microsoft Insight
NVD
EPSS 1% CVSS 7.6
HIGH This Week

NETGEAR Insight Cloud with firmware before Insight 5.6 allows remote authenticated users to achieve command injection. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Netgear Command Injection Insight
NVD
EPSS 1% CVSS 8.8
HIGH POC This Week

An issue was discovered in creditease-sec insight through 2018-09-11. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Insight
NVD GitHub
EPSS 1% CVSS 8.8
HIGH POC This Week

An issue was discovered in creditease-sec insight through 2018-09-11. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Insight
NVD GitHub
EPSS 1% CVSS 8.8
HIGH POC This Week

An issue was discovered in creditease-sec insight through 2018-09-11. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Insight
NVD GitHub
EPSS 1% CVSS 8.8
HIGH POC This Week

An issue was discovered in creditease-sec insight through 2018-09-11. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Insight
NVD GitHub
EPSS 0% CVSS 4.3
MEDIUM This Month

The REST API in the DTE Energy Insight application before 1.7.8 for Android allows remote authenticated users to obtain unspecified customer information via a SQL expression in the filter parameter. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Google Information Disclosure Insight
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy