Flexense

Syncbreeze

23 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2020-37100

Exploit
  • EPSS 0.01%
  • Veröffentlicht 03.02.2026 15:16:10
  • Zuletzt bearbeitet 20.02.2026 16:38:24

Sync Breeze Enterprise 12.4.18 contains an unquoted service path vulnerability that allows local attackers to execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path by placing malicious executables in s...

5.4

CVE-2025-59900

  • EPSS 0.03%
  • Veröffentlicht 28.01.2026 12:00:05
  • Zuletzt bearbeitet 10.02.2026 21:03:51

Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18 contain a persistent authenticated Cross-Site Scripting (XSS) vulnerability. An attacker could send malicious content to an authenticated user and steal information from their ...

5.4

CVE-2025-59899

  • EPSS 0.03%
  • Veröffentlicht 28.01.2026 11:59:02
  • Zuletzt bearbeitet 10.02.2026 21:04:08

Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18 contain a persistent authenticated Cross-Site Scripting (XSS) vulnerability. An attacker could send malicious content to an authenticated user and steal information from their ...

5.4

CVE-2025-59898

  • EPSS 0.03%
  • Veröffentlicht 28.01.2026 11:58:44
  • Zuletzt bearbeitet 10.02.2026 21:04:21

Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18 contain a persistent authenticated Cross-Site Scripting (XSS) vulnerability. An attacker could send malicious content to an authenticated user and steal information from their ...

5.4

CVE-2025-59897

  • EPSS 0.03%
  • Veröffentlicht 28.01.2026 11:58:28
  • Zuletzt bearbeitet 10.02.2026 21:04:35

Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18 contain a persistent authenticated Cross-Site Scripting (XSS) vulnerability. An attacker could send malicious content to an authenticated user and steal information from their ...

5.4

CVE-2025-59896

  • EPSS 0.03%
  • Veröffentlicht 28.01.2026 11:58:13
  • Zuletzt bearbeitet 10.02.2026 21:04:47

Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18 contain a persistent authenticated Cross-Site Scripting (XSS) vulnerability. An attacker could send malicious content to an authenticated user and steal information from their ...

7.5

CVE-2025-59895

  • EPSS 0.08%
  • Veröffentlicht 28.01.2026 11:55:43
  • Zuletzt bearbeitet 10.02.2026 21:07:26

Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18 contain a remote denial-of-service (DoS) vulnerability in the configuration restore functionality. The issue is due to insufficient validation of user-supplied data during this...

8

CVE-2025-59894

  • EPSS 0.02%
  • Veröffentlicht 28.01.2026 11:53:24
  • Zuletzt bearbeitet 10.02.2026 21:08:13

Cross-Site request forgery (CSRF) vulnerability in Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18. An authenticated user could cause another user to perform unwanted actions within the application they are logged into. This...

8

CVE-2025-59893

  • EPSS 0.02%
  • Veröffentlicht 28.01.2026 11:52:51
  • Zuletzt bearbeitet 10.02.2026 21:08:26

Cross-Site request forgery (CSRF) vulnerability in Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18. An authenticated user could cause another user to perform unwanted actions within the application they are logged into. This...

8

CVE-2025-59892

  • EPSS 0.02%
  • Veröffentlicht 28.01.2026 11:52:35
  • Zuletzt bearbeitet 10.02.2026 21:08:39

Cross-Site request forgery (CSRF) vulnerability in Sync Breeze Enterprise Server v10.4.18 and Disk Pulse Enterprise v10.4.18. An authenticated user could cause another user to perform unwanted actions within the application they are logged into. This...