VYPR
Vendor

Synel

Products
6
CVEs
8
Across products
10
Status
Private

Products

6

Recent CVEs

8
  • CVE-2023-32227CriJul 30, 2023
    risk 0.64cvss 9.8epss 0.01

    Synel SYnergy Fingerprint Terminals - CWE-798: Use of Hard-coded Credentials

  • CVE-2023-37213HigJul 30, 2023
    risk 0.57cvss 8.8epss 0.01

    Synel SYnergy Fingerprint Terminals - CWE-78: 'OS Command Injection'

  • CVE-2023-37220HigSep 3, 2023
    risk 0.47cvss 7.2epss 0.00

    Synel Terminals - CWE-494: Download of Code Without Integrity Check

  • CVE-2022-36778MedSep 13, 2022
    risk 0.42cvss 6.5epss 0.00

    insert HTML / js code inside input how to get to the vulnerable input : Workers > worker nickname > inject in this input the code.

  • CVE-2022-34768MedAug 5, 2022
    risk 0.42cvss 6.5epss 0.00

    insert HTML / js code inside input how to get to the vulnerable input : Workers > worker nickname > inject in this input the code.

  • CVE-2021-36718MedDec 8, 2021
    risk 0.40cvss 6.1epss 0.01

    SYNEL - eharmonynew / Synel Reports - The attacker can log in to the system with default credentials and export a report of eharmony system with sensetive data (Employee name, Employee ID number, Working hours etc') The vulnerabilety has been addressed and fixed on version 11.…

  • CVE-2022-22790MedJan 28, 2022
    risk 0.36cvss 5.6epss 0.01

    SYNEL - eharmony Directory Traversal. Directory Traversal - is an attack against a server or a Web application aimed at unauthorized access to the file system. on the "Name" parameter the attacker can return to the root directory and open the host file. The path exposes…

  • CVE-2012-2970Jul 9, 2012
    risk 0.00cvss epss 0.01

    The Synel SY-780/A Time & Attendance terminal allows remote attackers to cause a denial of service (device hang) via network traffic to port (1) 1641, (2) 3734, or (3) 3735.