Vasco Self-Service Portal Local File Inclusion Vulnerability

Vulnerability

A local file inclusion vulnerability has been identified in Vasco's Self-Service Portal versions through 3.14. This vulnerability allows remote attackers to access sensitive information by exploiting the help menu, potentially leading to unauthorized access to server-side configuration files.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive files on the host system, including server-side configuration files.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.3

exploitability

7.7

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

3.3

exploitability

7.7

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vasco Self-Service Portal Local File Inclusion Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating