CVE-2024-55398

Medium CVSS: 6.5

4C Strategies Exonaut before v22.4 was discovered to contain insecure permissions.

Vendor

Product

CWE

Yayın Tarihi

2025-08-06 21:15:27

Güncelleme

2025-10-01 20:38:09

Source Identifier

cve@mitre.org

KEV Date Added

CWE-276 Exonaut MEDIUM 4cstrategies 2025

http://exonaut.com https://gist.github.com/Jowu73/27fc259bf1355e1c557f0f54d630f9ca

Medium

CVE-2024-55401

An issue in 4C Strategies Exonaut before v22.4 allows attackers to execute a directory traversal.

Medium

CVE-2025-46660

An issue was discovered in 4C Strategies Exonaut 21.6. Passwords, stored in the database, are hashed without a salt.

Medium

CVE-2024-55399

4C Strategies Exonaut before v21.6.2.1-1 was discovered to contain a Server-Side Request Forgery (SSRF).

Medium

CVE-2024-55402

4C Strategies Exonaut before v22.4 was discovered to contain an access control issue.

High

CVE-2025-46659

An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. Information disclosure can occur via an external HT…

Critical

CVE-2025-46658

An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. There are verbose error messages.