Primary

Context

Eaton Foreseer Reporting Software Database Connection String Vulnerability Allowing Unauthorized Access to 4crXref Database

Vulnerability

A vulnerability exists in Eaton Foreseer Reporting Software (FRS) versions prior to 1.5.100) that exposes the connection string for the FRSCore database. Users with access to this database can leverage the exposed connection string to gain administrative access to the 4crXref database.

Impact

Exploitation of this vulnerability allows for unauthorized administrative access to the 4crXref database.

Remediation

Users are advised to update to Eaton Foreseer Reporting Software version 1.5.100 or later.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

3.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Eaton Foreseer Reporting Software Database Connection String Vulnerability Allowing Unauthorized Access to 4crXref Database

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating