Vulnerabilities > Flexense > Dupscout > 10.0.18

DATE CVE VULNERABILITY TITLE RISK
2020-12-09 CVE-2020-29659 Classic Buffer Overflow vulnerability in Flexense Dupscout 10.0.18
A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings&sid= attack.
network
low complexity
flexense CWE-120
critical
 9.8
9.8
2018-05-02 CVE-2018-10566 Cross-site Scripting vulnerability in Flexense Dupscout 10.0.18/10.7
XSS exists in Flexense DupScout Enterprise from v10.0.18 to v10.7.
network
low complexity
flexense CWE-79
6.1
6.1