Sysgauge

sysgauge

Vendor: Flexense • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-36930 1Flexense 1Sysgauge Feb 9, 2026 Jan 16, 2026 8.5 HIGH· v4 7.8 HIGH· v3 N/A· v2 SysGauge Server 7.9.18 contains an unquoted service path vulnerability in its binary path configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Pr...Show more SysGauge Server 7.9.18 contains an unquoted service path vulnerability in its binary path configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\SysGauge Server\bin\sysgaus.exe' to inject malicious executables and escalate privileges.Show less
CVE-2018-5359 1Flexense 1Sysgauge Nov 21, 2024 Jan 23, 2018 N/A· v4 8.1 HIGH· v3 9.3 HIGH· v2 The server in Flexense SysGauge 3.6.18 operating on port 9221 can be exploited remotely with the attacker gaining system-level access because of a Buffer Overflow.
CVE-2017-15667 1Flexense 1Sysgauge May 13, 2026 Dec 28, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Flexense SysGauge Server 3.6.18, the Control Protocol suffers from a denial of service. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9221.
CVE-2017-6416 1Flexense 1Sysgauge May 13, 2026 Mar 6, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in SysGauge 1.5.18. A buffer overflow vulnerability in SMTP connection verification leads to arbitrary code execution. The attack vector is a crafted SMTP daemon that sends a long 220 (aka "Servic...Show more An issue was discovered in SysGauge 1.5.18. A buffer overflow vulnerability in SMTP connection verification leads to arbitrary code execution. The attack vector is a crafted SMTP daemon that sends a long 220 (aka "Service ready") string.Show less