Appsync Security Vulnerabilities and Issues — Appsync CVE List

Lucene search

EmcAppsync

5 matches found

CVE•added 2014/12/30 3:59 p.m.•51 views

CVE-2014-4634

Unquoted Windows search path vulnerability in EMC Replication Manager through 5.5.2 and AppSync before 2.1.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character.

4.6CVSS8.7AI score0.0006EPSS

CVE•added 2017/11/01 1:29 a.m.•49 views

CVE-2017-14376

EMC AppSync Server prior to 3.5.0.1 contains database accounts with hardcoded passwords that could potentially be exploited by malicious users to compromise the affected system.

7.8CVSS7.5AI score0.00049EPSS

CVE•added 2023/09/27 4:21 p.m.•39 views

CVE-2023-32458

Dell AppSync, versions 4.4.0.0 to 4.6.0.0 including Service Pack releases, contains an improper access control vulnerability in Embedded Service Enabler component. A local malicious user could potentially exploit this vulnerability during installation leading to a privilege escalation.

7.8CVSS7.4AI score0.00064EPSS

CVE•added 2017/09/12 8:29 p.m.•38 views

CVE-2017-8015

EMC AppSync (all versions prior to 3.5) contains a SQL injection vulnerability that could potentially be exploited by malicious users to compromise the affected system.

9.8CVSS9.5AI score0.00572EPSS

CVE•added 2017/10/03 1:29 a.m.•35 views

CVE-2017-8018

EMC AppSync host plug-in versions 3.5 and below (Windows platform only) includes a denial of service (DoS) vulnerability that could potentially be exploited by malicious users to compromise the affected system.

7.5CVSS7.3AI score0.00586EPSS