Syncbreeze@10.1.16 Security Vulnerabilities and Issues — Syncbreeze@10.1.16 CVE List

Lucene search

FlexenseSyncbreeze10.1.16

3 matches found

CVE•added 2017/12/03 9:29 p.m.•96 views

CVE-2017-17099

There exists an unauthenticated SEH based Buffer Overflow vulnerability in the HTTP server of Flexense SyncBreeze Enterprise v10.1.16. When sending a GET request with an excessive length, it is possible for a malicious user to overwrite the SEH record and execute a payload that would run under the ...

7.8CVSS7.7AI score0.04142EPSS

CVE•added 2017/10/31 2:29 p.m.•69 views

CVE-2017-15950

Flexense SyncBreeze Enterprise version 10.1.16 is vulnerable to a buffer overflow that can be exploited for arbitrary code execution. The flaw is triggered by providing a long input into the "Destination directory" field, either within an XML document or through use of passive mode.

7.8CVSS8AI score0.10414EPSS

CVE•added 2018/01/10 6:29 p.m.•50 views

CVE-2017-15664

In Flexense Sync Breeze Enterprise v10.1.16, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9121.

7.5CVSS7.3AI score0.09578EPSS