Description
Super Flexible Software GmbH & Co. KG Syncovery 9 for Linux v9.47x and below was discovered to contain multiple remote code execution (RCE) vulnerabilities via the Job_ExecuteBefore and Job_ExecuteAfter parameters at post_profilesettings.php.
References
ExploitThird Party AdvisoryVDB Entry
Not Applicable
Broken Link
https://www.mgm-sp.com/en/multiple-vulnerabilities-in-syncovery-for-linux/
ExploitThird Party Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 · High
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2022-09-16T03:15:09.593
2 years agoLast modified
2023-08-08T14:22:24.967
1 year ago