RSS   Vulnerabilities for 'Radar'   RSS

2018-02-15
 
CVE-2018-6324

CWE-601
 

 
F-Secure Radar (on-premises) before 2018-02-15 has an Unvalidated Redirect via the ReturnUrl parameter that triggers upon a user login.

 
 
CVE-2018-6189

CWE-79
 

 
F-Secure Radar (on-premises) before 2018-02-15 has XSS via vectors involving the Tags parameter in the JSON request body in an outbound request for the /api/latest/vulnerabilityscans/tags/batch resource, aka a "suggested metadata tags for assets" issue.

 

 >>> Vendor: F-secure 55 Products
Internet gatekeeper
F-secure anti-virus
F-secure for firewalls
F-secure internet security
F-secure personal express
F-secure content scanner server
Policy manager
F-secure ssh server
Solutions based on f-secure personal express
F-secure service platform for service providers
F-secure anti-virus client security
F-secure anti-virus linux client security
F-secure anti-virus linux server security
F-secure protection service
F-secure anti-virus for linux
F-secure anti-virus for workstations
F-secure protection service for business
F-secure protection service for consumers
F-secure client security
F-secure mobile antivirus for s60
F-secure mobile antivirus for windows mobile
F-secure mobile security for series 80
F-secure anti-virus for citrix servers
F-secure anti-virus for microsoft exchange
F-secure anti-virus for mimesweeper
F-secure anti-virus for windows servers
F-secure home server security
F-secure internet gatekeeper for linux
F-secure internet gatekeeper for windows
F-secure linux security
F-secure messaging security gateway
Anti-virus
Client security
Home server security
Internet security
Linux security
F-secure internet security 2010
Psb workstation security
Safe anywhere
Email and server security
Server security
Secure messaging secure gateway
Software updater
F-secure online scanner
Radar
Xfence
Cloud protection for salesforce
Elements for microsoft 365
Endpoint protection
SAFE
Atlant
Cloud protection
Linux security 64
Security cloud
Elements endpoint protection


Copyright 2022, cxsecurity.com

 

Back to Top