appsync · threatengine.sh

CVE-2026-22768

>= 4.6.0.0 and < 4.6.1.0

Dell AppSync, version(s) 4.6.0, contain(s) an Incorrect Permission Assignment for Critical Resource vulnerability. A low privilege

7.3HIGH

CVE-2026-22767

>= 4.6.0.0 and < 4.6.1.0

Dell AppSync, version(s) 4.6.0, contain(s) an UNIX Symbolic Link (Symlink) Following vulnerability. A low privileged attacker with

7.3HIGH

CVE-2025-36603

< 4.6.0.4

Dell AppSync, version(s) 4.6.0.0, contains an Improper Restriction of XML External Entity Reference vulnerability. A low privilege

4.2MEDIUM

CVE-2025-32744

< 4.6.0.4

Dell AppSync, version(s) 4.6.0.0, contains an Unrestricted Upload of File with Dangerous Type vulnerability. A high privileged att

6.6MEDIUM

CVE-2024-52542

>= 4.6.0.0 and < 4.6.0.3

Dell AppSync, version 4.6.0.x, contain a Symbolic Link (Symlink) Following vulnerability. A low privileged attacker with local acc

4.4MEDIUM

CVE-2023-32458

>= 4.4.0.0 and <= 4.6.0.0

Dell AppSync, versions 4.4.0.0 to 4.6.0.0 including Service Pack releases, contains an improper access control vulnerability in Em

7.3HIGH

CVE-2017-14376

< 3.5.0.1

EMC AppSync Server prior to 3.5.0.1 contains database accounts with hardcoded passwords that could potentially be exploited by mal

7.8HIGH

CVE-2017-8018

<= 3.5

EMC AppSync host plug-in versions 3.5 and below (Windows platform only) includes a denial of service (DoS) vulnerability that coul

7.5HIGH

CVE-2017-8015

<= 3.0.0

EMC AppSync (all versions prior to 3.5) contains a SQL injection vulnerability that could potentially be exploited by malicious us

9.8CRITICAL

CVE-2014-4634

<= 2.0

Unquoted Windows search path vulnerability in EMC Replication Manager through 5.5.2 and AppSync before 2.1.0 allows local users to

dell appsync