A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings&sid= attack.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-12-09T16:13:31
Updated: 2024-08-04T16:55:10.955Z
Reserved: 2020-12-09T00:00:00
Link: CVE-2020-29659
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-12-09T17:15:31.680
Modified: 2022-09-03T03:58:18.870
Link: CVE-2020-29659
Redhat
No data.