Dorsettcontrols: Security Vulnerabilities
Dorsett Controls InfoScan is vulnerable due to a leak of possible
sensitive information through the response headers and the rendered
JavaScript prior to user login.
CVSS Score
5.3
EPSS Score
0.001
Published
2024-08-08
Dorsett Controls Central Server update server has potential information
leaks with an unprotected file that contains passwords and API keys.
CVSS Score
5.3
EPSS Score
0.001
Published
2024-08-08
The InfoScan client download page can be intercepted with a proxy, to
expose filenames located on the system, which could lead to additional
information exposure.
CVSS Score
5.3
EPSS Score
0.001
Published
2024-08-08