Microchip Technology SyncServer S250 Firmware 1.25
Approved changes feed: RSS · Atom
cpe:2.3:o:microchip:syncserver_s250_firmware:1.25:*:*:*:*:*:*:*
part: o version: 1.25 update: *
| Vendor | Microchip (838cafee-4381-5a32-ab83-9c6c625fa8b6) |
|---|---|
| Product | Syncserver S250 Firmware (b1ca92d0-8bd5-54a6-ab02-1d162787d229) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-9034 |
vulnerable | 2026-06-03 14:43:12.433951 |
Details available
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices mishandle session validation, leading to unauthenticated creation, modification, or elimination of users.
Published: 2020-02-17T03:00:59.000Z
Updated: 2024-08-04T10:19:19.683Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-9033 |
vulnerable | 2026-06-03 14:43:12.433430 |
Details available
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to authlog.php.
Published: 2020-02-17T03:01:09.000Z
Updated: 2024-08-04T10:19:20.093Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-9032 |
vulnerable | 2026-06-03 14:43:12.432932 |
Details available
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to kernlog.php.
Published: 2020-02-17T03:01:51.000Z
Updated: 2024-08-04T10:19:19.335Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-9031 |
vulnerable | 2026-06-03 14:43:12.432255 |
Details available
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to daemonlog.php.
Published: 2020-02-17T03:01:58.000Z
Updated: 2024-08-04T10:19:19.127Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-9030 |
vulnerable | 2026-06-03 14:43:12.431744 |
Details available
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to the syslog.php.
Published: 2020-02-17T03:02:08.000Z
Updated: 2024-08-04T10:19:19.322Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-9029 |
vulnerable | 2026-06-03 14:43:12.431203 |
Details available
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow Directory Traversal via the FileName parameter to messagelog.php.
Published: 2020-02-17T03:02:16.000Z
Updated: 2024-08-04T10:19:19.414Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-9028 |
vulnerable | 2026-06-03 14:43:12.427873 |
Details available
Symmetricom SyncServer S100 2.90.70.3, S200 1.30, S250 1.25, S300 2.65.0, and S350 2.80.1 devices allow stored XSS via the newUserName parameter on the "User Creation, Deletion and Password Maintenance" screen (when creating a new user).
Published: 2020-02-17T03:02:26.000Z
Updated: 2024-08-04T10:19:19.795Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.