CRITICAL🇵🇱 Wersja polska

CVE-2024-24722

CVSS 9.1v3.1pub. 2024-02-19upd. 2025-04-02

An unquoted service path vulnerability in the 12d Synergy Server and File Replication Server components may allow an attacker to gain elevated privileges via the 12d Synergy Server and/or 12d Synergy File Replication Server executable service path. This is fixed in 4.3.10.192, 5.1.5.221, and 5.1.6.235.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
  • 12dsynergy

    APP
    12Dsynergy
    < 4.3.10.1925.1.1.58 – 5.1.5.221 (bez)5.1.6.210 – 5.1.6.235 (bez)
  • 12dsynergy File Replication Server

    APP
    12Dsynergy
    < 4.3.10.1925.1.1.58 – 5.1.5.221 (bez)5.1.6.210 – 5.1.6.235 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References