cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-35309,https://securityvulnerability.io/vulnerability/CVE-2021-35309,Privilege Escalation in Samsung SyncThru Web Service,"An issue identified in Samsung SyncThru Web Service SPL 5.93 permits attackers to exploit man-in-the-middle (MITM) attacks, leading to escalated privileges. This flaw can enable unauthorized access to sensitive functionalities, thereby compromising system integrity and user data.",Samsung,Syncthru Web Service,7.5,HIGH,0.0005300000193528831,false,,false,false,false,,,false,false,,2023-08-22T00:00:00.000Z,0
CVE-2021-42913,https://securityvulnerability.io/vulnerability/CVE-2021-42913,Improper Access Control in Samsung SCX-6x55X Printers,"The SyncThru Web Service found on Samsung SCX-6x55X printers allows unauthorized access to sensitive information. Attackers can exploit this vulnerability to retrieve a list of SMB users and their cleartext passwords simply by reading the HTML source code. This security lapse means that no authentication is necessary, making it particularly critical for administrators to secure their devices against potential data leaks.",Samsung,Syncthru Web Service,7.5,HIGH,0.0016199999954551458,false,,false,false,true,2021-12-21T04:26:11.000Z,true,false,false,,2021-12-20T08:23:40.000Z,0
CVE-2019-7418,https://securityvulnerability.io/vulnerability/CVE-2019-7418,,"XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015 in ""/sws/swsAlert.sws"" in multiple parameters: flag, frame, func, and Nfunc.",Samsung,Syncthru Web Service,6.1,MEDIUM,0.0035600000992417336,false,,false,false,false,,,false,false,,2019-03-21T16:01:00.000Z,0
CVE-2019-7419,https://securityvulnerability.io/vulnerability/CVE-2019-7419,,"XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015 in ""/sws/leftmenu.sws"" in multiple parameters: ruiFw_id, ruiFw_pid, ruiFw_title.",Samsung,Syncthru Web Service,6.1,MEDIUM,0.0035600000992417336,false,,false,false,false,,,false,false,,2019-03-21T16:01:00.000Z,0
CVE-2019-7421,https://securityvulnerability.io/vulnerability/CVE-2019-7421,,"XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015 in ""/sws.login/gnb/loginView.sws"" in multiple parameters: contextpath and basedURL.",Samsung,Syncthru Web Service,6.1,MEDIUM,0.0035600000992417336,false,,false,false,false,,,false,false,,2019-03-17T19:59:07.000Z,0
CVE-2019-7420,https://securityvulnerability.io/vulnerability/CVE-2019-7420,,"XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015 in ""/sws.application/information/networkinformationView.sws"" in the tabName parameter.",Samsung,Syncthru Web Service,6.1,MEDIUM,0.0035600000992417336,false,,false,false,false,,,false,false,,2019-03-17T19:57:26.000Z,0
CVE-2018-14908,https://securityvulnerability.io/vulnerability/CVE-2018-14908,,"Samsung Syncthru Web Service V4.05.61 is vulnerable to CSRF on every request, as demonstrated by sws.application/printinformation/printReportSetupView.sws for a ""Print emails sent"" action.",Samsung,Syncthru Web Service,8.8,HIGH,0.002199999988079071,false,,false,false,false,,,false,false,,2018-08-03T18:00:00.000Z,0
CVE-2018-14904,https://securityvulnerability.io/vulnerability/CVE-2018-14904,,"Samsung Syncthru Web Service V4.05.61 is vulnerable to Multiple unauthenticated XSS attacks on several parameters, as demonstrated by ruiFw_pid.",Samsung,Syncthru Web Service,6.1,MEDIUM,0.0006200000061653554,false,,false,false,false,,,false,false,,2018-08-03T18:00:00.000Z,0