Vulnerability: Teacher Console Attack via Abused Insight UDP Broadcast Discovery System

CVE-2023-28352 · HIGH Severity

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

An issue was discovered in Faronics Insight 10.0.19045 on Windows. By abusing the Insight UDP broadcast discovery system, an attacker-controlled artificial Student Console can connect to and attack a Teacher Console even after Enhanced Security Mode has been enabled.

Learn more about our Web Application Penetration Testing UK.