Flexense

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-5262 1Flexense 1Diskboss Nov 21, 2024 Jan 12, 2018 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A stack-based buffer overflow in Flexense DiskBoss 8.8.16 and earlier allows unauthenticated remote attackers to execute arbitrary code in the context of a highly privileged account.
CVE-2017-15665 1Flexense 1Diskboss Nov 21, 2024 Jan 10, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Flexense DiskBoss Enterprise 8.5.12, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 8094.
CVE-2017-15664 1Flexense 1Syncbreeze Nov 21, 2024 Jan 10, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Flexense Sync Breeze Enterprise v10.1.16, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9121.
CVE-2017-15663 1Flexense 1Disk Pulse Nov 21, 2024 Jan 10, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Flexense Disk Pulse Enterprise v10.1.18, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9120.
CVE-2017-15662 1Flexense 1Vx Search Nov 21, 2024 Jan 10, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Flexense VX Search Enterprise v10.1.12, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9123.
CVE-2017-15667 1Flexense 1Sysgauge May 13, 2026 Dec 28, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Flexense SysGauge Server 3.6.18, the Control Protocol suffers from a denial of service. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9221.
CVE-2017-17088 1Flexense 1Syncbreeze May 13, 2026 Dec 19, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The Enterprise version of SyncBreeze 10.2.12 and earlier is affected by a Remote Denial of Service vulnerability. The web server does not check bounds when reading server requests in the Host header on making a connectio...Show more The Enterprise version of SyncBreeze 10.2.12 and earlier is affected by a Remote Denial of Service vulnerability. The web server does not check bounds when reading server requests in the Host header on making a connection, resulting in a classic Buffer Overflow that causes a Denial of Service.Show less
CVE-2017-17099 1Flexense 1Syncbreeze May 13, 2026 Dec 3, 2017 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 There exists an unauthenticated SEH based Buffer Overflow vulnerability in the HTTP server of Flexense SyncBreeze Enterprise v10.1.16. When sending a GET request with an excessive length, it is possible for a malicious u...Show more There exists an unauthenticated SEH based Buffer Overflow vulnerability in the HTTP server of Flexense SyncBreeze Enterprise v10.1.16. When sending a GET request with an excessive length, it is possible for a malicious user to overwrite the SEH record and execute a payload that would run under the Windows SYSTEM account.Show less
CVE-2017-15950 1Flexense 1Syncbreeze May 13, 2026 Oct 31, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Flexense SyncBreeze Enterprise version 10.1.16 is vulnerable to a buffer overflow that can be exploited for arbitrary code execution. The flaw is triggered by providing a long input into the "Destination directory" field...Show more Flexense SyncBreeze Enterprise version 10.1.16 is vulnerable to a buffer overflow that can be exploited for arbitrary code execution. The flaw is triggered by providing a long input into the "Destination directory" field, either within an XML document or through use of passive mode.Show less
CVE-2017-15220 1Flexense 1Vx Search May 13, 2026 Oct 11, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Flexense VX Search Enterprise 10.1.12 is vulnerable to a buffer overflow via an empty POST request to a long URI beginning with a /../ substring. This allows remote attackers to execute arbitrary code.
CVE-2017-14980 1Flexense 1Syncbreeze May 13, 2026 Oct 10, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Buffer overflow in Sync Breeze Enterprise 10.0.28 allows remote attackers to have unspecified impact via a long username parameter to /login.
CVE-2017-7310 1Flexense 3Diskboss DisksorterSyncbreeze May 13, 2026 Mar 29, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow vulnerability in Import Command in SyncBreeze before 10.6, DiskSorter before 10.6, DiskBoss before 8.9, DiskPulse before 10.6, DiskSavvy before 10.6, DupScout before 10.6, and VX Search before 10.6 allo...Show more A buffer overflow vulnerability in Import Command in SyncBreeze before 10.6, DiskSorter before 10.6, DiskBoss before 8.9, DiskPulse before 10.6, DiskSavvy before 10.6, DupScout before 10.6, and VX Search before 10.6 allows attackers to execute arbitrary code via a crafted XML file containing a long name attribute of a classify element.Show less
CVE-2017-6416 1Flexense 1Sysgauge May 13, 2026 Mar 6, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in SysGauge 1.5.18. A buffer overflow vulnerability in SMTP connection verification leads to arbitrary code execution. The attack vector is a crafted SMTP daemon that sends a long 220 (aka "Servic...Show more An issue was discovered in SysGauge 1.5.18. A buffer overflow vulnerability in SMTP connection verification leads to arbitrary code execution. The attack vector is a crafted SMTP daemon that sends a long 220 (aka "Service ready") string.Show less

Previous 1 23