Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 31/05/2023 Updated: 06/06/2023

CVSS v3 Base Score: 9.6 | Impact Score: 6 | Exploitability Score: 2.8

VMScore: 0

An issue exists in Faronics Insight 10.0.19045 on Windows. It is possible for an malicious user to create a proof-of-concept script that functions similarly to a Student Console, providing unauthenticated attackers with the ability to exploit XSS vulnerabilities within the Teacher Console application and achieve remote code execution as NT AUTHORITY/SYSTEM on all connected Student Consoles and the Teacher Console in a Zero Click manner.

Vulnerable Product	Search on Vulmon	Subscribe to Product
faronics insight 10.0.19045

CWE-79 https://research.nccgroup.com/2023/05/30/technical-advisory-multiple-vulnerabilities-in-faronics-insight/https://research.nccgroup.com/?research=Technical%20advisories https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-28347

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect