top of page
perceptive_background_267k.jpg

SyncBreeze 10.0.28 contains a denial of service vulnerability in the login endpoint that allows remote attackers to crash the service. Attackers can send an oveā€¦

Published:

26 January 2026 at 23:00:00

Alert date:

27 January 2026 at 17:08:00

Source:

nvd.nist.gov

Click to open the original link from this advisory

Enterprise Applications

SyncBreeze 10.0.28 contains a denial of service vulnerability in the login endpoint that allows remote attackers to crash the service by sending oversized payloads in login requests. This vulnerability can overwhelm the application and disrupt service availability. The vulnerability is identified as CVE-2020-36946 and has been documented in multiple security databases. Attackers can exploit this remotely without authentication. The issue affects the login functionality specifically and can lead to complete service disruption.

Technical details

Mitigation steps:

Affected products:

SyncBreeze

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2020-36946
http://www.syncbreeze.com
https://www.exploit-db.com/exploits/49291
https://www.vulncheck.com/advisories/syncbreeze-login-denial-of-service

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page