Aggregates CVE and security vulnerability intelligence across all 4cstrategies-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk path handling and vendor risk ssrf, with potential vendor impact file overwrite across vendor surface production workloads and vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-55401 | An issue in 4C Strategies Exonaut before v22.4 allows attackers to execute a directory traversal. | [email protected] | 6.5 | 0.49% | 2025-08-07 | 2026-06-17 |
| CVE-2025-46660 | An issue was discovered in 4C Strategies Exonaut 21.6. Passwords, stored in the database, are hashed without a salt. | [email protected] | 5.3 | 0.26% | 2025-08-06 | 2026-06-17 |
| CVE-2024-55402 | 4C Strategies Exonaut before v22.4 was discovered to contain an access control issue. | [email protected] | 5.3 | 0.29% | 2025-08-06 | 2026-06-17 |
| CVE-2024-55399 | 4C Strategies Exonaut before v21.6.2.1-1 was discovered to contain a Server-Side Request Forgery (SSRF). | [email protected] | 6.5 | 0.25% | 2025-08-06 | 2026-06-17 |
| CVE-2024-55398 | 4C Strategies Exonaut before v22.4 was discovered to contain insecure permissions. | [email protected] | 6.5 | 0.25% | 2025-08-06 | 2026-06-17 |
| CVE-2025-46659 | An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. Information disclosure can occur via an external HTTPS request. | [email protected] | 7.5 | 0.31% | 2025-08-06 | 2026-06-17 |
| CVE-2025-46658 | An issue was discovered in ExonautWeb in 4C Strategies Exonaut 21.6. There are verbose error messages. | [email protected] | 9.8 | 0.41% | 2025-08-05 | 2026-06-17 |