4cstrategies Exonaut
7 CVEs affecting 4cstrategies Exonaut. Latest disclosed: 2025-08-07. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-46658 | Critical | 9.8 | 2025-08-05 | An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. There are verbose error messages. |
CVE-2025-46659 | High | 7.5 | 2025-08-06 | An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. Information disclosure can occur via an external HTTPS request. |
CVE-2024-55401 | Medium | 6.5 | 2025-08-07 | An issue in 4C Strategies Exonaut before v22.4 allows attackers to execute a directory traversal. |
CVE-2024-55399 | Medium | 6.5 | 2025-08-06 | 4C Strategies Exonaut before v21.6.2.1-1 was discovered to contain a Server-Side Request Forgery (SSRF). |
CVE-2024-55398 | Medium | 6.5 | 2025-08-06 | 4C Strategies Exonaut before v22.4 was discovered to contain insecure permissions. |
CVE-2025-46660 | Medium | 5.3 | 2025-08-06 | An issue was discovered in 4C Strategies Exonaut 21.6. Passwords, stored in the database, are hashed without a salt. |
CVE-2024-55402 | Medium | 5.3 | 2025-08-06 | 4C Strategies Exonaut before v22.4 was discovered to contain an access control issue. |