InfoScan
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-42493 | Med | 0.34 | 5.3 | 0.00 | Aug 8, 2024 | Dorsett Controls InfoScan is vulnerable due to a leak of possible sensitive information through the response headers and the rendered JavaScript prior to user login. | ||
| CVE-2024-42408 | Med | 0.34 | 5.3 | 0.00 | Aug 8, 2024 | The InfoScan client download page can be intercepted with a proxy, to expose filenames located on the system, which could lead to additional information exposure. | ||
| CVE-2024-39287 | Med | 0.34 | 5.3 | 0.00 | Aug 8, 2024 | Dorsett Controls Central Server update server has potential information leaks with an unprotected file that contains passwords and API keys. |
- risk 0.34cvss 5.3epss 0.00
Dorsett Controls InfoScan is vulnerable due to a leak of possible sensitive information through the response headers and the rendered JavaScript prior to user login.
- risk 0.34cvss 5.3epss 0.00
The InfoScan client download page can be intercepted with a proxy, to expose filenames located on the system, which could lead to additional information exposure.
- risk 0.34cvss 5.3epss 0.00
Dorsett Controls Central Server update server has potential information leaks with an unprotected file that contains passwords and API keys.