Skip to main content

Scalefusion

5 CVEs product

Monthly

CVE-2023-51751 MEDIUM This Month

ScaleFusion 10.5.2 does not properly limit users to the Edge application because Alt-F4 can be used. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Scalefusion
NVD
CVSS 3.1
6.8
EPSS
0.2%
CVE-2023-51750 MEDIUM This Month

ScaleFusion 10.5.2 does not properly limit users to the Edge application because file downloads can occur. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Scalefusion Windows
NVD
CVSS 3.1
4.6
EPSS
0.2%
CVE-2023-51749 HIGH POC This Week

ScaleFusion 10.5.2 does not properly limit users to the Edge application because a search can be made from a tooltip. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Microsoft Information Disclosure Scalefusion Windows
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2023-51748 HIGH POC This Week

ScaleFusion 10.5.2 does not properly limit users to the Edge application because Ctrl-O and Ctrl-S can be used. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Scalefusion
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2023-50159 HIGH POC This Week

In ScaleFusion (Windows Desktop App) agent 10.5.2, Kiosk mode application restrictions can be bypassed allowing arbitrary code to be executed. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass RCE Microsoft Scalefusion Windows
NVD
CVSS 3.1
8.8
EPSS
0.0%
EPSS 0% CVSS 6.8
MEDIUM This Month

ScaleFusion 10.5.2 does not properly limit users to the Edge application because Alt-F4 can be used. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Scalefusion
NVD
EPSS 0% CVSS 4.6
MEDIUM This Month

ScaleFusion 10.5.2 does not properly limit users to the Edge application because file downloads can occur. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Microsoft Information Disclosure Scalefusion +1
NVD
EPSS 0% CVSS 8.8
HIGH POC This Week

ScaleFusion 10.5.2 does not properly limit users to the Edge application because a search can be made from a tooltip. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Microsoft Information Disclosure Scalefusion +1
NVD
EPSS 0% CVSS 8.8
HIGH POC This Week

ScaleFusion 10.5.2 does not properly limit users to the Edge application because Ctrl-O and Ctrl-S can be used. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Scalefusion
NVD
EPSS 0% CVSS 8.8
HIGH POC This Week

In ScaleFusion (Windows Desktop App) agent 10.5.2, Kiosk mode application restrictions can be bypassed allowing arbitrary code to be executed. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass RCE Microsoft +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy