Vulnerabilities > Flexense > Syncbreeze
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-02 | CVE-2018-10563 | Cross-site Scripting vulnerability in Flexense Syncbreeze An XSS in Flexense SyncBreeze affects all versions (tested from SyncBreeze Enterprise from v10.1 to v10.7). | 4.3 |
| 2018-03-12 | CVE-2018-8065 | Improper Input Validation vulnerability in Flexense Syncbreeze 10.6.24 An issue was discovered in the web server in Flexense SyncBreeze Enterprise 10.6.24. | 7.5 |
| 2018-02-06 | CVE-2017-17996 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense Syncbreeze A buffer overflow vulnerability in "Add command" functionality exists in Flexense SyncBreeze Enterprise <= 10.3.14. | 9.0 |
| 2018-02-02 | CVE-2018-6537 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense Syncbreeze 10.4.18 A buffer overflow vulnerability in the control protocol of Flexense SyncBreeze Enterprise v10.4.18 allows remote attackers to execute arbitrary code by sending a crafted packet to TCP port 9121. | 7.5 |
| 2018-01-24 | CVE-2017-13696 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense products A buffer overflow vulnerability lies in the web server component of Dup Scout Enterprise 9.9.14, Disk Savvy Enterprise 9.9.14, Sync Breeze Enterprise 9.9.16, and Disk Pulse Enterprise 9.9.16 where an attacker can craft a malicious GET request and exploit the web server component. | 10.0 |
| 2018-01-10 | CVE-2017-15664 | Improperly Implemented Security Check for Standard vulnerability in Flexense Syncbreeze 10.1.16 In Flexense Sync Breeze Enterprise v10.1.16, the Control Protocol suffers from a denial of service vulnerability. | 5.0 |
| 2017-12-19 | CVE-2017-17088 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense Syncbreeze The Enterprise version of SyncBreeze 10.2.12 and earlier is affected by a Remote Denial of Service vulnerability. | 5.0 |
| 2017-12-03 | CVE-2017-17099 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense Syncbreeze 10.1.16 There exists an unauthenticated SEH based Buffer Overflow vulnerability in the HTTP server of Flexense SyncBreeze Enterprise v10.1.16. | 7.2 |
| 2017-10-31 | CVE-2017-15950 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense Syncbreeze 10.1.16 Flexense SyncBreeze Enterprise version 10.1.16 is vulnerable to a buffer overflow that can be exploited for arbitrary code execution. | 6.8 |
| 2017-10-10 | CVE-2017-14980 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Flexense Syncbreeze 10.0.28 Buffer overflow in Sync Breeze Enterprise 10.0.28 allows remote attackers to have unspecified impact via a long username parameter to /login. | 7.5 |