1.35

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

dorsettcontrols

NVD

Published: 2024-08-08

Updated: 2024-08-29

Summary

Dorsett Controls InfoScan is vulnerable due to a leak of possible sensitive information through the response headers and the rendered JavaScript prior to user login.

Vulnerable Configurations

Part	Description	Count
Application	Dorsettcontrols Dorsettcontrols Infoscan 1.35 Dorsettcontrols Infoscan 1.33 Dorsettcontrols Infoscan 1.32	3

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-221-01
https://portal.dtscada.com/#/security-bulletins?bulletin=1