Vulnerabilities > Flexense > Dupscout > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-12-09 | CVE-2020-29659 | Classic Buffer Overflow vulnerability in Flexense Dupscout 10.0.18 A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings&sid= attack. | 10.0 |
2018-01-24 | CVE-2017-13696 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense products A buffer overflow vulnerability lies in the web server component of Dup Scout Enterprise 9.9.14, Disk Savvy Enterprise 9.9.14, Sync Breeze Enterprise 9.9.16, and Disk Pulse Enterprise 9.9.16 where an attacker can craft a malicious GET request and exploit the web server component. | 10.0 |