漏洞标题
N/A
漏洞描述信息
在Windows上发现了一项问题,涉及 Faronics Insight 10.0.19045。Insight Teacher Console 应用程序允许未授权的黑客查看学生桌面的不断更新的截图,并代表学生提交虚假的截图。黑客可以在未经学生同意的情况下查看学生桌面的截图。这些截图可能包含敏感/个人数据。黑客还可以迅速提交虚假的图片,将学生桌面的实际内容从 Teacher Console 隐藏起来。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
漏洞类别
信息暴露
漏洞标题
N/A
漏洞描述信息
An issue was discovered in Faronics Insight 10.0.19045 on Windows. The Insight Teacher Console application allows unauthenticated attackers to view constantly updated screenshots of student desktops and to submit falsified screenshots on behalf of students. Attackers are able to view screenshots of student desktops without their consent. These screenshots may potentially contain sensitive/personal data. Attackers can also rapidly submit falsified images, hiding the actual contents of student desktops from the Teacher Console.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Faronics Insight 安全漏洞
漏洞描述信息
Faronics Insight是加拿大Faronics公司的一个有效的课堂管理工具。 Faronics Insight 10.0.19045 版本存在安全漏洞,该漏洞源于未经身份验证的攻击者可以查看不断更新的学生桌面屏幕截图,并代替学生提交伪造的屏幕截图。
CVSS信息
N/A
漏洞类别
其他