CVE-2025-59895

Name of the Vulnerable Software and Affected Versions Sync Breeze Enterprise Server versions 10.4.18 Disk Pulse Enterprise versions 10.4.18

Description Sync Breeze Enterprise Server version 10.4.18 and Disk Pulse Enterprise version 10.4.18 are affected by a remote denial-of-service (DoS) issue within the configuration restore functionality. The root cause is inadequate validation of user-provided data during the configuration restore process. An attacker can exploit this by sending crafted requests to modify the configuration file, leading to application unresponsiveness. A successful attack can corrupt the configuration, preventing service recovery and necessitating a complete reinstallation.

Recommendations Update Sync Breeze Enterprise Server to a version beyond 10.4.18. Update Disk Pulse Enterprise to a version beyond 10.4.18.