Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
emc appsync vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv3
CVE-2024-22464
Dell EMC AppSync, versions from 4.2.0.0 to 4.6.0.0 including all Service Pack releases, contain an exposure of sensitive information vulnerability in AppSync server logs. A high privileged remote attacker could potentially exploit this vulnerability, leading to the disclosure of...
Dell Emc Appsync
7.8
CVSSv3
CVE-2023-32458
Dell AppSync, versions 4.4.0.0 to 4.6.0.0 including Service Pack releases, contains an improper access control vulnerability in Embedded Service Enabler component. A local malicious user could potentially exploit this vulnerability during installation leading to a privilege esca...
Emc Appsync
7.5
CVSSv3
CVE-2022-24424
Dell EMC AppSync versions from 3.9 to 4.3 contain a path traversal vulnerability in AppSync server. A remote unauthenticated attacker may potentially exploit this vulnerability to gain unauthorized read access to the files stored on the server filesystem, with the privileges of t...
Dell Emc Appsync
6.1
CVSSv3
CVE-2022-22552
Dell EMC AppSync versions 3.9 to 4.3 contain a clickjacking vulnerability in AppSync. A remote unauthenticated attacker could potentially exploit this vulnerability to trick the victim into executing state changing operations.
Dell Emc Appsync
9.8
CVSSv3
CVE-2022-22553
Dell EMC AppSync versions 3.9 to 4.3 contain an Improper Restriction of Excessive Authentication Attempts Vulnerability that can be exploited from UI and CLI. An adjacent unauthenticated attacker could potentially exploit this vulnerability, leading to password brute-forcing. Acc...
Dell Emc Appsync
8.8
CVSSv3
CVE-2022-22551
DELL EMC AppSync versions 3.9 to 4.3 use GET request method with sensitive query strings. An Adjacent, unauthenticated attacker could potentially exploit this vulnerability, and hijack the victim session.
Dell Emc Appsync
7.8
CVSSv3
CVE-2017-14376
EMC AppSync Server before 3.5.0.1 contains database accounts with hardcoded passwords that could potentially be exploited by malicious users to compromise the affected system.
Emc Appsync
7.5
CVSSv3
CVE-2017-8018
EMC AppSync host plug-in versions 3.5 and below (Windows platform only) includes a denial of service (DoS) vulnerability that could potentially be exploited by malicious users to compromise the affected system.
Emc Appsync
9.8
CVSSv3
CVE-2017-8015
EMC AppSync (all versions before 3.5) contains a SQL injection vulnerability that could potentially be exploited by malicious users to compromise the affected system.
Emc Appsync
NA
CVE-2014-4634
Unquoted Windows search path vulnerability in EMC Replication Manager up to and including 5.5.2 and AppSync prior to 2.1.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character.
Emc Appsync
Emc Replication Manager 5.3
Emc Replication Manager
Emc Replication Manager 5.5.1
Emc Replication Manager 5.5
Emc Replication Manager 5.1
Emc Replication Manager 5.2
Emc Replication Manager 5.4
Emc Replication Manager 5.4.3
Emc Replication Manager 5.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started