CVE-2024-9950

Name of the Vulnerable Software and Affected Versions Forescout SecureConnector version 11.3.07.0109

Description A vulnerability in Forescout SecureConnector allows unauthenticated users to modify compliance scripts due to an insecure temporary directory. This issue enables unauthorized modification of scripts, potentially leading to security breaches.

Recommendations For Forescout SecureConnector version 11.3.07.0109, consider restricting access to the temporary directory to prevent unauthorized script modifications until a patch is available. As a temporary workaround, disabling the ability for unauthenticated users to modify compliance scripts can help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.