CVE-2023-50159

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 11, 2024

Updated: Jan 18, 2024

Summary

CVE-2023-50159 is a vulnerability affecting ScaleFusion's Windows Desktop App agent version 10.5.2. The issue permits bypassing application restrictions in Kiosk mode, allowing arbitrary code execution. This vulnerability has been resolved in version 10.5.7 by disabling the file explorer in Agent-based Multi-App and Single App Kiosk modes. This bypass could potentially expose the affected system to security risks, making it crucial for users to update to the latest software version.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/trQrrA
https://www.cve.org/CVERecord?id=CVE-2023-50159
https://nvd.nist.gov/vuln/detail/CVE-2023-50159

Back to Vulnerability Database

CVE-2023-50159

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations