faronics

Top products

The 15 most recently published vulnerabilities affecting faronics.

• CVE-2024-8159Deep Freeze 9.00.020.5760 - Out-of-bounds read6.4Oct 3, 2024
• CVE-2024-36497Unhashed Storage of Password9.1Jun 24, 2024
• CVE-2024-36496Hardcoded Credentials7.5Jun 24, 2024
• CVE-2024-36495Read/Write Permissions for Everyone on Configuration File7.7Jun 24, 2024
• CVE-2024-1618Unquoted item or search path vulnerability in Faronics Deep Freeze Server Standard7.8Mar 12, 2024
• CVE-2023-28353An issue was discovered in Faronics Insight 10.0.19045 on Windows. An unauthenticated attacker is able to upload any type of file to any location on the Teacher Console's computer, enabling a varie...8.8May 30, 2023
• CVE-2023-28352An issue was discovered in Faronics Insight 10.0.19045 on Windows. By abusing the Insight UDP broadcast discovery system, an attacker-controlled artificial Student Console can connect to and attack...7.4May 30, 2023
• CVE-2023-28351An issue was discovered in Faronics Insight 10.0.19045 on Windows. Every keystroke made by any user on a computer with the Student application installed is logged to a world-readable directory. A l...3.3May 30, 2023
• CVE-2023-28350An issue was discovered in Faronics Insight 10.0.19045 on Windows. Attacker-supplied input is not validated/sanitized before being rendered in both the Teacher and Student Console applications, ena...6.1May 30, 2023
• CVE-2023-28349An issue was discovered in Faronics Insight 10.0.19045 on Windows. It is possible for an attacker to create a crafted program that functions similarly to the Teacher Console. This can compel Studen...8.8May 30, 2023
• CVE-2023-28348An issue was discovered in Faronics Insight 10.0.19045 on Windows. A suitably positioned attacker could perform a man-in-the-middle attack on either a connected student or teacher, enabling them to...7.4May 30, 2023
• CVE-2023-28347An issue was discovered in Faronics Insight 10.0.19045 on Windows. It is possible for an attacker to create a proof-of-concept script that functions similarly to a Student Console, providing unauth...9.6May 30, 2023
• CVE-2023-28346An issue was discovered in Faronics Insight 10.0.19045 on Windows. It is possible for a remote attacker to communicate with the private API endpoints exposed at /login, /consoleSettings, /console, ...7.3May 30, 2023
• CVE-2023-28345An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console application exposes the teacher's Console password in cleartext via an API endpoint accessible from lo...4.6May 30, 2023
• CVE-2023-28344An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console application allows unauthenticated attackers to view constantly updated screenshots of student desktop...7.1May 30, 2023