Synchronization Engine

synchronization_engine

Vendor: Pega • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-26467 1Pega 1Synchronization Engine Nov 21, 2024 Apr 10, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 A man in the middle can redirect traffic to a malicious server in a compromised configuration.
CVE-2023-28093 1Pega 1Synchronization Engine Nov 21, 2024 Apr 10, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A user with a compromised configuration can start an unsigned binary as a service.
CVE-2023-26466 1Pega 1Synchronization Engine Nov 21, 2024 Apr 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A user with non-Admin access can change a configuration file on the client to modify the Server URL.