Syncthru Web Service@- Security Vulnerabilities and Issues — Syncthru Web Service@- CVE List

Lucene search

SamsungSyncthru Web Service-

5 matches found

CVE•added 2021/12/20 9:15 a.m.•51 views

CVE-2021-42913

The SyncThru Web Service on Samsung SCX-6x55X printers allows an attacker to gain access to a list of SMB users and cleartext passwords by reading the HTML source code. Authentication is not required.

7.5CVSS7.6AI score0.00515EPSS

CVE•added 2019/03/21 4:1 p.m.•42 views

CVE-2019-7421

XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015 in "/sws.login/gnb/loginView.sws" in multiple parameters: contextpath and basedURL.

6.1CVSS6AI score0.00566EPSS

CVE•added 2019/03/21 4:1 p.m.•40 views

CVE-2019-7418

XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015 in "/sws/swsAlert.sws" in multiple parameters: flag, frame, func, and Nfunc.

6.1CVSS6.5AI score0.00566EPSS

CVE•added 2019/03/21 4:1 p.m.•33 views

CVE-2019-7420

XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015 in "/sws.application/information/networkinformationView.sws" in the tabName parameter.

6.1CVSS5.9AI score0.00566EPSS

CVE•added 2019/03/21 4:1 p.m.•32 views

CVE-2019-7419

XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015 in "/sws/leftmenu.sws" in multiple parameters: ruiFw_id, ruiFw_pid, ruiFw_title.

6.1CVSS6AI score0.00566EPSS