Vulnerabilities > Flexense
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-02 | CVE-2018-10563 | Cross-site Scripting vulnerability in Flexense Syncbreeze An XSS in Flexense SyncBreeze affects all versions (tested from SyncBreeze Enterprise from v10.1 to v10.7). | 6.1 |
| 2018-05-02 | CVE-2018-10294 | Cross-site Scripting vulnerability in Flexense Diskboss Flexense DiskBoss Enterprise v7.4.28 to v9.1.16 has XSS. | 6.1 |
| 2018-03-12 | CVE-2018-8065 | Improper Input Validation vulnerability in Flexense Syncbreeze 10.6.24 An issue was discovered in the web server in Flexense SyncBreeze Enterprise 10.6.24. | 7.5 |
| 2018-02-27 | CVE-2018-6481 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense Disksavvy 10.4.18 A buffer overflow vulnerability in the control protocol of Disk Savvy Enterprise v10.4.18 allows remote attackers to execute arbitrary code by sending a crafted packet to TCP port 9124. | 9.8 |
| 2018-02-06 | CVE-2017-17996 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense Syncbreeze A buffer overflow vulnerability in "Add command" functionality exists in Flexense SyncBreeze Enterprise <= 10.3.14. | 8.8 |
| 2018-02-02 | CVE-2018-5261 | Missing Encryption of Sensitive Data vulnerability in Flexense Diskboss An issue was discovered in Flexense DiskBoss 8.8.16 and earlier. | 8.1 |
| 2018-02-02 | CVE-2018-6537 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense Syncbreeze 10.4.18 A buffer overflow vulnerability in the control protocol of Flexense SyncBreeze Enterprise v10.4.18 allows remote attackers to execute arbitrary code by sending a crafted packet to TCP port 9121. | 9.8 |
| 2018-01-24 | CVE-2017-13696 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense products A buffer overflow vulnerability lies in the web server component of Dup Scout Enterprise 9.9.14, Disk Savvy Enterprise 9.9.14, Sync Breeze Enterprise 9.9.16, and Disk Pulse Enterprise 9.9.16 where an attacker can craft a malicious GET request and exploit the web server component. | 9.8 |
| 2018-01-23 | CVE-2018-5359 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense Sysgauge 3.6.18 The server in Flexense SysGauge 3.6.18 operating on port 9221 can be exploited remotely with the attacker gaining system-level access because of a Buffer Overflow. | 8.1 |
| 2018-01-12 | CVE-2018-5262 | Out-of-bounds Write vulnerability in Flexense Diskboss A stack-based buffer overflow in Flexense DiskBoss 8.8.16 and earlier allows unauthenticated remote attackers to execute arbitrary code in the context of a highly privileged account. | 9.8 |