3 matches found
CVE-2017-13696
CVE-2017-13696 describes a buffer overflow in the web server component of Dup Scout Enterprise 9.9.14, Disk Savvy Enterprise 9.9.14, Sync Breeze Enterprise 9.9.16, and Disk Pulse Enterprise 9.9.16, triggered by crafting a malicious GET request. The flaw arises from improper handling/sanitization ...
CVE-2020-29659
CVE-2020-29659 affects Flexense DupScout Enterprise 10.0.18, where a buffer overflow in the web server allows remote, unauthenticated code execution as SYSTEM by overflowing the sid parameter through GET /settings&sid=. The issue stems from improper handling of the sid parameter in the web server...
CVE-2018-10566
The CVE refers to a Cross‑Site Scripting (XSS) vulnerability in Flexense DupScout Enterprise (versions 10.0.18 through 10.7). Public records indicate an XSS condition that could enable client‑side code execution and potential exposure of sensitive information or loss of control, with the affected...