Vulnerabilities > Flexense > Dupscout

DATE CVE VULNERABILITY TITLE RISK
2020-12-09 CVE-2020-29659 Classic Buffer Overflow vulnerability in Flexense Dupscout 10.0.18
A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings&sid= attack.
network
low complexity
flexense CWE-120
critical
10.0
2018-05-02 CVE-2018-10566 Cross-site Scripting vulnerability in Flexense Dupscout
XSS exists in Flexense DupScout Enterprise from v10.0.18 to v10.7.
network
flexense CWE-79
4.3
2018-01-24 CVE-2017-13696 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense products
A buffer overflow vulnerability lies in the web server component of Dup Scout Enterprise 9.9.14, Disk Savvy Enterprise 9.9.14, Sync Breeze Enterprise 9.9.16, and Disk Pulse Enterprise 9.9.16 where an attacker can craft a malicious GET request and exploit the web server component.
network
low complexity
flexense CWE-119
critical
10.0