Vulnerabilities (CVE)

Filtered by vendor Dorsettcontrols Subscribe
Filtered by product Infoscan
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-42493 1 Dorsettcontrols 1 Infoscan 2024-08-29 N/A 5.3 MEDIUM
Dorsett Controls InfoScan is vulnerable due to a leak of possible sensitive information through the response headers and the rendered JavaScript prior to user login.
CVE-2024-39287 1 Dorsettcontrols 1 Infoscan 2024-08-29 N/A 7.5 HIGH
Dorsett Controls Central Server update server has potential information leaks with an unprotected file that contains passwords and API keys.
CVE-2024-42408 1 Dorsettcontrols 1 Infoscan 2024-08-29 N/A 3.7 LOW
The InfoScan client download page can be intercepted with a proxy, to expose filenames located on the system, which could lead to additional information exposure.