Dell Emc Appsync
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Dell Emc Appsync.
By the Year
In 2026 there have been 0 vulnerabilities in Dell Emc Appsync. Emc Appsync did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 2 | 5.55 |
| 2023 | 0 | 0.00 |
| 2022 | 4 | 8.05 |
It may take a day or so for new Emc Appsync vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Dell Emc Appsync Security Vulnerabilities
Dell AppSync Server XXE (XML External Entity) 4.3-4.6 Info Disclosure
CVE-2024-39586
4.3 - Medium
- October 09, 2024
Dell AppSync Server, version 4.3 through 4.6, contains an XML External Entity Injection vulnerability. An adjacent high privileged attacker could potentially exploit this vulnerability, leading to information disclosure.
XXE
Dell EMC AppSync Log Disclosure Vulnerability (v4.2-4.6)
CVE-2024-22464
6.8 - Medium
- February 08, 2024
Dell EMC AppSync, versions from 4.2.0.0 to 4.6.0.0 including all Service Pack releases, contain an exposure of sensitive information vulnerability in AppSync server logs. A high privileged remote attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable system with privileges of the compromised account.
Insertion of Sensitive Information into Log File
Dell EMC AppSync versions from 3.9 to 4.3 contain a path traversal vulnerability in AppSync server
CVE-2022-24424
7.5 - High
- April 21, 2022
Dell EMC AppSync versions from 3.9 to 4.3 contain a path traversal vulnerability in AppSync server. A remote unauthenticated attacker may potentially exploit this vulnerability to gain unauthorized read access to the files stored on the server filesystem, with the privileges of the running web application.
Directory traversal
Dell EMC AppSync versions 3.9 to 4.3 contain an Improper Restriction of Excessive Authentication Attempts Vulnerability
CVE-2022-22553
9.8 - Critical
- January 21, 2022
Dell EMC AppSync versions 3.9 to 4.3 contain an Improper Restriction of Excessive Authentication Attempts Vulnerability that can be exploited from UI and CLI. An adjacent unauthenticated attacker could potentially exploit this vulnerability, leading to password brute-forcing. Account takeover is possible if weak passwords are used by users.
Improper Restriction of Excessive Authentication Attempts
Dell EMC AppSync versions 3.9 to 4.3 contain a clickjacking vulnerability in AppSync
CVE-2022-22552
6.1 - Medium
- January 21, 2022
Dell EMC AppSync versions 3.9 to 4.3 contain a clickjacking vulnerability in AppSync. A remote unauthenticated attacker could potentially exploit this vulnerability to trick the victim into executing state changing operations.
Clickjacking
DELL EMC AppSync versions 3.9 to 4.3 use GET request method with sensitive query strings
CVE-2022-22551
8.8 - High
- January 21, 2022
DELL EMC AppSync versions 3.9 to 4.3 use GET request method with sensitive query strings. An Adjacent, unauthenticated attacker could potentially exploit this vulnerability, and hijack the victim session.
Session Fixation
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Dell Emc Appsync or by Dell? Click the Watch button to subscribe.
