CVE-2024-36495 – The application Faronics WINSelect (Standard + Enterprise) saves its configuration in an …

Vuln ID: CVE-2024-36495

Published: 2024-06-24 09:15:09.730

Description: The application Faronics WINSelect (Standard + Enterprise) saves its configuration in an encrypted file on the file system which “Everyone” has read and write access to, path to file:

C:ProgramDataWINSelectWINSelect.wsd

The path for the affected WINSelect Enterprise configuration file is:

C:ProgramDataFaronicsStorageSpaceWSWINSelect.wsd

Base Score: –

Vector:

Source: NVD.NIST.GOV

Date:

24 June 2024

Categorie(s):

NVD

Tag(s):

NVD

Donut Holes, clickfix, rapperbots, bad devs, war, Doug Rants about Backups, and More. – SWN #48720 June 2025
Jira tickets become attack vectors in PoC ‘living off AI’ attack20 June 2025
Anubis Ransomware Lists Disneyland Paris as New Victim20 June 2025
Hackers Target 700+ ComfyUI AI Image Generation Servers to Spread Malware20 June 2025
Netflix, Apple, BofA websites hijacked with fake help-desk numbers20 June 2025