CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-15950

Flexense SyncBreeze Enterprise version 10.1.16 is vulnerable to a buffer overflow that can be exploited for arbitrary code execution. The flaw is triggered by providing a long input into the "Destination directory" field, either within an XML document or through use of passive mode.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.104

EPSS Ranking 92.8%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

http://packetstormsecurity.com/files/162008/SyncBreeze-10.1.16-Buffer-Overflow.html
http://seclists.org/fulldisclosure/2017/Oct/64
http://packetstormsecurity.com/files/162008/SyncBreeze-10.1.16-Buffer-Overflow.html
http://seclists.org/fulldisclosure/2017/Oct/64

Products affected by CVE-2017-15950

Flexense » Syncbreeze » Version: 10.1.16

cpe:2.3:a:flexense:syncbreeze:10.1.16

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15950

Products

Pricing

Contact Us