eScan Management Console 14.0.1400.2281 is vulnerable to Incorrect Access Control via acteScanAVReport.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HEscanav Escan Management Console
APPEscanav14.0.1400.2281
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References
Related vulnerabilities
CVE-2023-33730CRITICAL9.8ten sam produkt
Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 1...
CVE-2023-31703CRITICAL9.0ten sam produkt
Cross Site Scripting (XSS) in the edit user form in Microworld Technologies eScan management console 14.0.1400...
CVE-2023-31702HIGH7.2ten sam produkt
SQL injection in the View User Profile in MicroWorld eScan Management Console 14.0.1400.2281 allows remote att...
CVE-2023-34838MEDIUM5.4ten sam produkt
A Cross Site Scripting vulnerability in Microworld Technologies eScan Management console v.14.0.1400.2281 allo...
CVE-2023-34836MEDIUM5.4ten sam produkt
A Cross Site Scripting vulnerability in Microworld Technologies eScan Management console v.14.0.1400.2281 allo...