CVE-2024-36497 | Faronics WINSelect Standard/WINSelect Enterprise prior 8.30.xx.903 Configuration File cleartext storage

Posted by Angelo Barbosa | Jun 24, 2024 | CVE

A vulnerability was found in Faronics WINSelect Standard and WINSelect Enterprise. It has been classified as problematic. This affects an unknown part of the component Configuration File Handler. The manipulation leads to cleartext storage of sensitive information.

This vulnerability is uniquely identified as CVE-2024-36497. The attack needs to be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-36497 | Faronics WINSelect Standard/WINSelect Enterprise prior 8.30.xx.903 Configuration File cleartext storage

Related Posts

CVE-2024-39419 | Adobe Commerce/Magento Open Source up to 2.4.4-p9/2.4.5-p8/2.4.6-p6/2.4.7-p1 improper authorization (apsb24-61)

CVE-2024-32944 | ameya/ayame UTAU up to 0.4.18 Voicebank Installer path traversal

CVE-2024-45304 | OpenZeppelin cairo-contracts up to 0.15.x control flow (GHSA-w2px-25pm-2cf9)

CVE-2024-28128 | unclebob FitNesse up to 20220318 cross site scripting