Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
MicrochipSyncserver S100 Firmware2.90.70.3

7 matches found

CVE
CVEadded 2020/02/17 4:15 a.m.101 views

CVE-2020-9031

Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to daemonlog.php.

6.5CVSS6.5AI score0.00219EPSS
CVE
CVEadded 2020/02/17 3:15 a.m.94 views

CVE-2020-9034

Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices mishandle session validation, leading to unauthenticated creation, modification, or elimination of users.

7.5CVSS7.6AI score0.007EPSS
CVE
CVEadded 2020/02/17 4:15 a.m.93 views

CVE-2020-9029

Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to messagelog.php.

6.5CVSS6.5AI score0.00219EPSS
CVE
CVEadded 2020/02/17 4:15 a.m.91 views

CVE-2020-9030

Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to the syslog.php.

6.5CVSS6.5AI score0.00219EPSS
CVE
CVEadded 2020/02/17 4:15 a.m.87 views

CVE-2020-9028

Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow stored XSS via the newUserName parameter on the "User Creation, Deletion and Password Maintenance" screen (when creating a new user).

6.1CVSS6AI score0.00328EPSS
CVE
CVEadded 2020/02/17 4:15 a.m.87 views

CVE-2020-9033

Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to authlog.php.

6.5CVSS6.5AI score0.00219EPSS
CVE
CVEadded 2020/02/17 4:15 a.m.85 views

CVE-2020-9032

Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to kernlog.php.

6.5CVSS6.5AI score0.00219EPSS