Aggregates CVE and security vulnerability intelligence across all netsaro-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk path handling, with potential vendor impact file overwrite across vendor surface production workloads and vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2011-3694 | The Server Administration Console in NetSaro Enterprise Messenger Server 2.0 allows remote attackers to read application source code by appending a %00 character to a URL. | [email protected] | 5.0 | 0.29% | 2011-09-27 | 2026-04-29 |
| CVE-2011-3693 | NetSaro Enterprise Messenger Server 2.0 allows local users to discover cleartext server credentials by reading the NetSaro.fdb file. | [email protected] | 1.9 | 0.06% | 2011-09-27 | 2026-04-29 |
| CVE-2011-3692 | NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml, which allows local users to obtain sensitive information by reading this file and performing a base64 decoding step. | [email protected] | 1.9 | 0.06% | 2011-09-27 | 2026-04-29 |