CVE-2024-4461 | SugarSync up to 4.1.2 on Windows unquoted search path

Posted by Angelo Barbosa | May 3, 2024 | CVE

A vulnerability was found in SugarSync up to 4.1.2 on Windows. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to unquoted search path.

The identification of this vulnerability is CVE-2024-4461. It is possible to launch the attack on the local host. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4461 | SugarSync up to 4.1.2 on Windows unquoted search path

Related Posts

CVE-2024-20376 | Cisco IP Phone 6800/IP Phone 7800/IP Phone 8800 up to 12.0.4 Web-based Management Interface out-of-bounds write (cisco-sa-ipphone-multi-vulns-cXAhCvS)

CVE-2022-48799 | Linux Kernel up to 5.16.9 perf perf_cgroup_switch iteration

CVE-2024-4629 | Red Hat Keycloak Bruteforce Protection improper enforcement of a single, unique action

CVE-2024-4981 | Pagure Temporary Clone _update_file_in_git symlink