Vulnerabilities
Vulnerable Software
Forescout:  Security Vulnerabilities
Multiple cross-site scripting (XSS) vulnerabilities on the Forescout CounterACT NAC device before 7.0 allow remote attackers to inject arbitrary web script or HTML via (1) the a parameter to assets/login or (2) the query parameter to assets/rangesearch.
CVSS Score
4.3
EPSS Score
0.009
Published
2012-12-05
The Forescout CounterACT NAC device 6.3.4.1 does not block ARP and ICMP traffic from unrecognized clients, which allows remote attackers to conduct ARP poisoning attacks via crafted packets.
CVSS Score
4.3
EPSS Score
0.017
Published
2012-12-05
Multiple cross-site scripting (XSS) vulnerabilities in the status program on the ForeScout CounterACT appliance with software 6.3.3.2 through 6.3.4.10 allow remote attackers to inject arbitrary web script or HTML via (1) the loginname parameter in a forgotpass action or (2) the username parameter.
CVSS Score
4.3
EPSS Score
0.01
Published
2012-06-11


Contact Us

Shodan ® - All rights reserved