Vulnerability Database

322,388

Total vulnerabilities in the database

CVE-2020-36946

SyncBreeze 10.0.28 contains a denial of service vulnerability in the login endpoint that allows remote attackers to crash the service. Attackers can send an oversized payload in the login request to overwhelm the application and potentially disrupt service availability.

Published: Jan 27, 2026
Updated: Jan 28, 2026
CVE: CVE-2020-36946
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWEs:

CWE-770

Affected Software
References

No affected software listed.

http://www.syncbreeze.com
https://www.exploit-db.com/exploits/49291
https://www.vulncheck.com/advisories/syncbreeze-login-denial-of-service

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo