Exonaut

exonaut

Vendor: 4cstrategies • 7 CVEs

CVEs (7)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-55401 14cstrategies 1Exonaut Oct 1, 2025 Aug 7, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An issue in 4C Strategies Exonaut before v22.4 allows attackers to execute a directory traversal.
CVE-2025-46660 14cstrategies 1Exonaut Oct 1, 2025 Aug 6, 2025 N/A· v4 5.3 MEDIUM· v3 N/A· v2 An issue was discovered in 4C Strategies Exonaut 21.6. Passwords, stored in the database, are hashed without a salt.
CVE-2024-55402 14cstrategies 1Exonaut Oct 1, 2025 Aug 6, 2025 N/A· v4 5.3 MEDIUM· v3 N/A· v2 4C Strategies Exonaut before v22.4 was discovered to contain an access control issue.
CVE-2024-55399 14cstrategies 1Exonaut Oct 9, 2025 Aug 6, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 4C Strategies Exonaut before v21.6.2.1-1 was discovered to contain a Server-Side Request Forgery (SSRF).
CVE-2024-55398 14cstrategies 1Exonaut Oct 1, 2025 Aug 6, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 4C Strategies Exonaut before v22.4 was discovered to contain insecure permissions.
CVE-2025-46659 14cstrategies 1Exonaut Oct 2, 2025 Aug 6, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. Information disclosure can occur via an external HTTPS request.
CVE-2025-46658 14cstrategies 1Exonaut Oct 2, 2025 Aug 5, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. There are verbose error messages.