Insight Security Vulnerabilities and Issues — Insight CVE List

Lucene search

FaronicsInsight

4 matches found

CVE•added 2023/05/31 12:15 a.m.•50 views

CVE-2023-28348

An issue was discovered in Faronics Insight 10.0.19045 on Windows. A suitably positioned attacker could perform a man-in-the-middle attack on either a connected student or teacher, enabling them to intercept student keystrokes or modify executable files being sent from teachers to students.

7.4CVSS7.2AI score0.00039EPSS

CVE•added 2023/05/31 12:15 a.m.•34 views

CVE-2023-28344

An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console application allows unauthenticated attackers to view constantly updated screenshots of student desktops and to submit falsified screenshots on behalf of students. Attackers are able to view screenshots of...

7.1CVSS6.8AI score0.0008EPSS

CVE•added 2023/05/31 12:15 a.m.•29 views

CVE-2023-28346

An issue was discovered in Faronics Insight 10.0.19045 on Windows. It is possible for a remote attacker to communicate with the private API endpoints exposed at /login, /consoleSettings, /console, etc. despite Virtual Host Routing being used to block this access. Remote attackers can interact with ...

7.3CVSS7.2AI score0.00085EPSS

CVE•added 2023/05/31 12:15 a.m.•24 views

CVE-2023-28352

An issue was discovered in Faronics Insight 10.0.19045 on Windows. By abusing the Insight UDP broadcast discovery system, an attacker-controlled artificial Student Console can connect to and attack a Teacher Console even after Enhanced Security Mode has been enabled.

7.4CVSS7.3AI score0.00028EPSS