4cstrategiesCVEs & Vulnerabilities
7 CVEs affecting 4cstrategies products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
Most Affected Products
An issue in 4C Strategies Exonaut before v22.4 allows attackers to execute a directory traversal.
An issue was discovered in 4C Strategies Exonaut 21.6. Passwords, stored in the database, are hashed without a salt.
4C Strategies Exonaut before v22.4 was discovered to contain an access control issue.
4C Strategies Exonaut before v21.6.2.1-1 was discovered to contain a Server-Side Request Forgery (SSRF).
4C Strategies Exonaut before v22.4 was discovered to contain insecure permissions.
An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. Information disclosure can occur via an external HTTPS request.
An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. There are verbose error messages.