Vulnerabilities > CVE-2022-36534 - Unspecified vulnerability in Syncovery
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Super Flexible Software GmbH & Co. KG Syncovery 9 for Linux v9.47x and below was discovered to contain multiple remote code execution (RCE) vulnerabilities via the Job_ExecuteBefore and Job_ExecuteAfter parameters at post_profilesettings.php.
Vulnerable Configurations
References
- http://packetstormsecurity.com/files/170245/Syncovery-For-Linux-Web-GUI-Authenticated-Remote-Command-Execution.html
- http://super.com
- http://syncovery.com
- https://www.mgm-sp.com/en/multiple-vulnerabilities-in-syncovery-for-linux/
- http://packetstormsecurity.com/files/170245/Syncovery-For-Linux-Web-GUI-Authenticated-Remote-Command-Execution.html
- https://www.mgm-sp.com/en/multiple-vulnerabilities-in-syncovery-for-linux/
- http://syncovery.com
- http://super.com