cbcvebase.

Emc Appsync vulnerabilities

5 known vulnerabilities affecting emc/appsync.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH3MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2017-8015P3CRITICALCVSS 9.8≤ 3.0.02017-09-12
CVE-2017-8015 [CRITICAL] CWE-89 CVE-2017-8015: EMC AppSync (all versions prior to 3.5) contains a SQL injection vulnerability that could potentiall EMC AppSync (all versions prior to 3.5) contains a SQL injection vulnerability that could potentially be exploited by malicious users to compromise the affected system.
nvd
CVE-2023-32458P3HIGHCVSS 7.8≥ 4.4.0.0, ≤ 4.6.0.02023-09-27
CVE-2023-32458 [HIGH] CWE-284 CVE-2023-32458: Dell AppSync, versions 4.4.0.0 to 4.6.0.0 including Service Pack releases, contains an improper acc Dell AppSync, versions 4.4.0.0 to 4.6.0.0 including Service Pack releases, contains an improper access control vulnerability in Embedded Service Enabler component. A local malicious user could potentially exploit this vulnerability during installation leading to a privilege escalation.
nvd
CVE-2017-14376P3HIGHCVSS 7.8fixed in 3.5.0.12017-11-01
CVE-2017-14376 [HIGH] CWE-798 CVE-2017-14376: EMC AppSync Server prior to 3.5.0.1 contains database accounts with hardcoded passwords that could p EMC AppSync Server prior to 3.5.0.1 contains database accounts with hardcoded passwords that could potentially be exploited by malicious users to compromise the affected system.
nvd
CVE-2017-8018P4HIGHCVSS 7.5≤ 3.52017-10-03
CVE-2017-8018 [HIGH] CWE-20 CVE-2017-8018: EMC AppSync host plug-in versions 3.5 and below (Windows platform only) includes a denial of service EMC AppSync host plug-in versions 3.5 and below (Windows platform only) includes a denial of service (DoS) vulnerability that could potentially be exploited by malicious users to compromise the affected system.
nvd
CVE-2014-4634P4MEDIUMCVSS 4.6≤ 2.02014-12-30
CVE-2014-4634 [MEDIUM] CVE-2014-4634: Unquoted Windows search path vulnerability in EMC Replication Manager through 5.5.2 and AppSync befo Unquoted Windows search path vulnerability in EMC Replication Manager through 5.5.2 and AppSync before 2.1.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character.
nvd
Emc Appsync vulnerabilities | cvebase