CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-42408

The InfoScan client download page can be intercepted with a proxy, to expose filenames located on the system, which could lead to additional information exposure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.9%

CVSS Severity

CVSS v3 Score 5.3

References

https://portal.dtscada.com/#/security-bulletins?bulletin=1
https://www.cisa.gov/news-events/ics-advisories/icsa-24-221-01

Products affected by CVE-2024-42408

Dorsettcontrols » Infoscan » Version: 1.32

cpe:2.3:a:dorsettcontrols:infoscan:1.32
Dorsettcontrols » Infoscan » Version: 1.33

cpe:2.3:a:dorsettcontrols:infoscan:1.33
Dorsettcontrols » Infoscan » Version: 1.35

cpe:2.3:a:dorsettcontrols:infoscan:1.35

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-42408

Products

Pricing

Contact Us