Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
CloudmeSync

2 matches found

CVE
CVEadded 2018/02/11 6:0 p.m.135 views

CVE-2018-6892

CloudMe Sync (v1.11.2) is affected by CVE-2018-6892: an unauthenticated attacker can connect to the Sync client on TCP port 8888 and trigger a buffer overflow that allows arbitrary code execution. Public exploits demonstrate SEH/ROP techniques (including DEP/ASLR bypass) against Windows targets. ...

9.8CVSS9.1AI score0.89668EPSS
CVE
CVEadded 2018/03/15 2:0 a.m.55 views

CVE-2018-7886

CVE-2018-7886 affects CloudMe Sync 1.11.0, where an unauthenticated local attacker connecting to the Sync client on 127.0.0.1:8888 can trigger a stack/heap buffer overflow by sending a crafted payload, potentially enabling code execution or a crash. This entry arises from an incomplete fix for CV...

7.8CVSS8.8AI score0.89668EPSS