An issue was discovered in Faronics... CVE-2023-28347

- AV AC AU C I A
发布: 2023-05-31
修订: 2025-01-13

An issue was discovered in Faronics Insight 10.0.19045 on Windows. It is possible for an attacker to create a proof-of-concept script that functions similarly to a Student Console, providing unauthenticated attackers with the ability to exploit XSS vulnerabilities within the Teacher Console application and achieve remote code execution as NT AUTHORITY/SYSTEM on all connected Student Consoles and the Teacher Console in a Zero Click manner.

0%
暂无可用Exp或PoC
当前有2条受影响产品信息