CVE-2020-36946— SyncBreeze 10.0.28 - 'login' Denial of Service

CVSS 7.5 · High EPSS 0.22% · P44 Updated Apr 08, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-36946

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

SyncBreeze 10.0.28 - 'login' Denial of Service

Source: NVD (National Vulnerability Database)

Vulnerability Description

SyncBreeze 10.0.28 contains a denial of service vulnerability in the login endpoint that allows remote attackers to crash the service. Attackers can send an oversized payload in the login request to overwhelm the application and potentially disrupt service availability.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

不加限制或调节的资源分配

Source: NVD (National Vulnerability Database)

Vulnerability Title

Flexense SyncBreeze 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Flexense SyncBreeze是Flexense公司的一款文件同步和备份工具。 Flexense SyncBreeze 10.0.28版本存在安全漏洞，该漏洞源于登录端点存在缺陷，可能导致拒绝服务攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Flexense Ltd.	SyncBreeze	10.0.28	-

II. Public POCs for CVE-2020-36946

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-36946

请登录查看更多情报信息。

https://nvd.nist.gov/vuln/detail/CVE-2020-36946

IV. Related Vulnerabilities

Same product: SyncBreeze

CVE-2023-53873
SyncBreeze 15.2.24 Denial of Service via Login Endpoint Over

Same weakness: CWE-770

V. Comments for CVE-2020-36946

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-36946— SyncBreeze 10.0.28 - 'login' Denial of Service

I. Basic Information for CVE-2020-36946

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-36946

III. Intelligence Information for CVE-2020-36946

IV. Related Vulnerabilities

V. Comments for CVE-2020-36946

Leave a comment