Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
emc avamar server 7.3.0-233 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-4990
In EMC Avamar Server Software 7.4.1-58, 7.4.0-242, 7.3.1-125, 7.3.0-233, 7.3.0-226, an unauthorized attacker may leverage the file upload feature of the system maintenance page to load a maliciously crafted file to any directory which could allow the malicious user to execute arb...
Emc Avamar Server 7.3.0-233
Emc Avamar Server 7.3.1-125
Emc Avamar Server 7.4.0-242
Emc Avamar Server 7.3.0-226
Emc Avamar Server 7.4.1-58
9.8
CVSSv3
CVE-2017-4989
In EMC Avamar Server Software 7.3.1-125, 7.3.0-233, 7.3.0-226, 7.2.1-32, 7.2.1-31, 7.2.0-401, an unauthenticated remote attacker may potentially bypass the authentication process to gain access to the system maintenance page. This may be exploited by an malicious user to view sen...
Emc Avamar Server 7.2.1-32
Emc Avamar Server 7.2.1-31
Emc Avamar Server 7.3.0-233
Emc Avamar Server 7.3.1-125
Emc Avamar Server 7.2.0-401
Emc Avamar Server 7.3.0-226
6.7
CVSSv3
CVE-2016-0905
Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server prior to 7.3.0-233 allow local users to obtain root privileges by leveraging admin access and entering a sudo command.
Emc Avamar Server
9.1
CVSSv3
CVE-2016-0903
Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server prior to 7.3.0-233 rely on client-side authentication, which allows remote malicious users to spoof clients and read backup data via a modified client agent.
Emc Avamar Server
7.8
CVSSv3
CVE-2016-0920
Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server prior to 7.3.0-233 allow local users to obtain root access via a crafted parameter to a command that is available in the sudo configuration.
Emc Avamar Server
6.5
CVSSv3
CVE-2016-0921
Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server prior to 7.3.0-233 use weak permissions for unspecified directories, which allows local users to obtain root access by replacing a script with a Trojan horse program.
Emc Avamar Server
8.6
CVSSv3
CVE-2016-0904
Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) in EMC Avamar Server prior to 7.3.0-233 use the same encryption key across different customers' installations, which allows remote malicious users to defeat cryptographic protection mechanisms and obtain sensitive clie...
Emc Avamar Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started