Dupscout

dupscout

Vendor: Flexense • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-29659 1Flexense 1Dupscout Nov 21, 2024 Dec 9, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings&sid= attack.
CVE-2018-10566 1Flexense 1Dupscout Nov 21, 2024 May 2, 2018 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 XSS exists in Flexense DupScout Enterprise from v10.0.18 to v10.7.
CVE-2017-13696 1Flexense 4Diskpulse DisksavvyDupscout+1 more Nov 21, 2024 Jan 24, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A buffer overflow vulnerability lies in the web server component of Dup Scout Enterprise 9.9.14, Disk Savvy Enterprise 9.9.14, Sync Breeze Enterprise 9.9.16, and Disk Pulse Enterprise 9.9.16 where an attacker can craft a...Show more A buffer overflow vulnerability lies in the web server component of Dup Scout Enterprise 9.9.14, Disk Savvy Enterprise 9.9.14, Sync Breeze Enterprise 9.9.16, and Disk Pulse Enterprise 9.9.16 where an attacker can craft a malicious GET request and exploit the web server component. Successful exploitation of the software will allow an attacker to gain complete access to the system with NT AUTHORITY / SYSTEM level privileges. The vulnerability lies due to improper handling and sanitization of the incoming request.Show less