SyncoveryCVEs & Vulnerabilities
3 CVEs affecting Syncovery products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
3 CVEs→ All vendors
Most Affected Products
syncovery 3
CVE-2022-36536CRITICAL
An issue in the component post_applogin.php of Super Flexible Software GmbH & Co. KG Syncovery 9 for Linux v9.47x and below allows attackers to escalate privileges via creating crafted session tokens.
16 Sep 2022
9.8
CVSS
CVE-2022-36534HIGH
Super Flexible Software GmbH & Co. KG Syncovery 9 for Linux v9.47x and below was discovered to contain multiple remote code execution (RCE) vulnerabilities via the Job_ExecuteBefore and Job_ExecuteAfter parameters at post_profilesettings.php.
16 Sep 2022
8.8
CVSS
CVE-2022-36533MEDIUM
Super Flexible Software GmbH & Co. KG Syncovery 9 for Linux v9.47x and below was discovered to contain a cross-site scripting (XSS) vulnerability.
16 Sep 2022
5.4
CVSS
← PrevPage 1 / 1Next →