Clinical-genomics Scout — known CVE vulnerabilities
Every CVE whose affected-product data names Clinical-genomics Scout, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-1592 — CVSS 8.2 (high): Server-Side Request Forgery in scout in GitHub repository clinical-genomics/scout prior to v4.42. An attacker could make the application…
CVE-2022-1554 — CVSS 7.5 (high): Path Traversal due to `send_file` call in GitHub repository clinical-genomics/scout prior to 4.52.
CVE-2024-47530 — CVSS 5.4 (medium): Scout is a web-based visualizer for VCF-files. Open redirect vulnerability allows performing phishing attacks on users by redirecting them…
CVE-2024-47531 — CVSS 4.6 (medium): Scout is a web-based visualizer for VCF-files. Due to the lack of sanitization in the filename, it is possible bypass intended file…