Sync
by Bittorrent
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-31851 | Hig | 0.63 | 8.6 | 0.03 | Apr 5, 2024 | A path traversal vulnerability exists in the Java version of CData Sync < 23.4.8843 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain access to sensitive information and perform limited actions. | ||
| CVE-2022-0915 | 0.00 | — | 0.00 | Apr 12, 2022 | There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Logitech Sync for Windows prior to 2.4.574. Successful exploitation of these vulnerabilities may escalate the permission to the system user. | |||
| CVE-2015-2846 | 0.00 | — | 0.04 | Apr 13, 2015 | BitTorrent Sync allows remote attackers to execute arbitrary commands via a crafted btsync: link. |
- risk 0.63cvss 8.6epss 0.03
A path traversal vulnerability exists in the Java version of CData Sync < 23.4.8843 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain access to sensitive information and perform limited actions.
- CVE-2022-0915Apr 12, 2022risk 0.00cvss —epss 0.00
There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Logitech Sync for Windows prior to 2.4.574. Successful exploitation of these vulnerabilities may escalate the permission to the system user.
- CVE-2015-2846Apr 13, 2015risk 0.00cvss —epss 0.04
BitTorrent Sync allows remote attackers to execute arbitrary commands via a crafted btsync: link.