This page lists publicly disclosed CVE vulnerabilities affecting emc appsync (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-32458 | Dell AppSync, versions 4.4.0.0 to 4.6.0.0 including Service Pack releases, contains an improper access control vulnerability in Embedded Service Enabler component. A local malicious user could potentially exploit this vulnerability during installation leading to a privilege escalation. | [email protected] | 7.3 | 0.06% | 2023-09-27 | 2024-11-21 |
| CVE-2017-14376 | EMC AppSync Server prior to 3.5.0.1 contains database accounts with hardcoded passwords that could potentially be exploited by malicious users to compromise the affected system. | [email protected] | 7.8 | 0.05% | 2017-11-01 | 2026-05-13 |
| CVE-2017-8018 | EMC AppSync host plug-in versions 3.5 and below (Windows platform only) includes a denial of service (DoS) vulnerability that could potentially be exploited by malicious users to compromise the affected system. | [email protected] | 7.5 | 0.59% | 2017-10-03 | 2026-05-13 |
| CVE-2017-8015 | EMC AppSync (all versions prior to 3.5) contains a SQL injection vulnerability that could potentially be exploited by malicious users to compromise the affected system. | [email protected] | 9.8 | 0.57% | 2017-09-12 | 2026-05-13 |
| CVE-2014-4634 | Unquoted Windows search path vulnerability in EMC Replication Manager through 5.5.2 and AppSync before 2.1.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character. | [email protected] | 4.6 | 0.06% | 2014-12-30 | 2026-05-06 |