Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
emc avamar vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-0945
EMC Avamar Client prior to 6.1.101-89 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle malicious users to spoof SSL servers via an arbitrary valid...
Emc Avamar 5.0
Emc Avamar 5.0.4-26
Emc Avamar 5.0.0-407
Emc Avamar 6.0
Emc Avamar 4.0
Emc Avamar
Emc Avamar 4.1
NA
CVE-2012-2291
EMC Avamar Client 4.x, 5.x, and 6.x on HP-UX and Mac OS X, and the EMC Avamar plugin 4.x, 5.x, and 6.x for Oracle, uses world-writable permissions for cache directories, which allows local users to gain privileges via an unspecified symlink attack.
Emc Avamar 5.0
Emc Avamar 5.0.0-407
Emc Avamar 4.0
Emc Avamar 4.1
Emc Avamar 5.0.4-26
Emc Avamar 6.0
Emc Avamar Plugin 4.0
Emc Avamar Plugin 6.0
Emc Avamar Plugin 5.0
Emc Avamar Plugin 6.1
NA
CVE-2013-0944
The web-based file-restore interface in EMC Avamar Server prior to 6.1.0 allows remote authenticated users to read arbitrary files via a crafted URL.
Emc Avamar 6.0.2
Emc Avamar 6.0.3
Emc Avamar 5.0
Emc Avamar 5.0.0-407
Emc Avamar 6.0.1
Emc Avamar 5.0.4-26
Emc Avamar 6.0
NA
CVE-2014-4623
EMC Avamar 6.0.x, 6.1.x, and 7.0.x in Avamar Data Store (ADS) GEN4(S) and Avamar Virtual Edition (AVE), when Password Hardening prior to 2.0.0.4 is enabled, uses UNIX DES crypt for password hashing, which makes it easier for context-dependent malicious users to obtain cleartext p...
Emc Avamar 6.0.1
Emc Avamar 7.0
Emc Avamar 6.0.2
Emc Avamar 6.0.3
Emc Avamar 6.1
Emc Avamar 6.1.101-87
NA
CVE-2011-1740
EMC Avamar 4.x, 5.0.x, and 6.0.x prior to 6.0.0-592 allows remote authenticated users to modify client data or obtain sensitive information about product activities by leveraging privileged access to a different domain.
Emc Avamar 5.0.4-26
Emc Avamar 6.0
Emc Avamar 4.1
Emc Avamar 5.0.0-407
Emc Avamar 5.0
Emc Avamar 4.0
NA
CVE-2013-3274
EMC Avamar Server and Avamar Virtual Edition prior to 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly determine authorization for calls to Java RMI methods, which allows remote authenticated users to execute arbitrary code via unspecified vectors.
Emc Avamar Server Virtual Edition 5.0
Emc Avamar Server 4.1
Emc Avamar Server 6.0
Emc Avamar Server
Emc Avamar Server Virtual Edition 4.0
Emc Avamar Server Virtual Edition 6.0
Emc Avamar Server 5.0
Emc Avamar Server 4.0
Emc Avamar Server Virtual Edition 4.1
Emc Avamar Server Virtual Edition
NA
CVE-2013-3275
EMC Avamar Server and Avamar Virtual Edition prior to 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly restrict use of FRAME elements, which makes it easier for remote malicious users to obtain sensitive information via a crafted web site, related to "cross ...
Emc Avamar Server
Emc Avamar Server 5.0
Emc Avamar Server Virtual Edition
Emc Avamar Server 4.0
Emc Avamar Server Virtual Edition 4.0
Emc Avamar Server Virtual Edition 4.1
Emc Avamar Server Virtual Edition 6.0
Emc Avamar Server 4.1
Emc Avamar Server Virtual Edition 5.0
Emc Avamar Server 6.0
NA
CVE-2011-0648
Unspecified vulnerability in EMC Avamar prior to 5.0.4-30 allows remote authenticated users to gain privileges via unknown vectors.
Emc Avamar 5.0
Emc Avamar 4.1
Emc Avamar
9.8
CVSSv3
CVE-2017-15548
An issue exists in EMC Avamar Server 7.1.x, 7.2.x, 7.3.x, 7.4.x, 7.5.0; EMC NetWorker Virtual Edition (NVE) 9.0.x, 9.1.x, 9.2.x; and EMC Integrated Data Protection Appliance 2.0. A remote unauthenticated malicious user can potentially bypass application authentication and gain un...
Emc Avamar Server 7.3-226
Emc Avamar Server 7.3-233
Emc Avamar Server 7.3-125
Emc Avamar Server 7.2-309
Emc Avamar Server 7.4-242
Emc Avamar Server 7.3-211
Emc Avamar Server 7.2-401
Emc Avamar Server 7.1-302
Emc Integrated Data Protection Appliance 2.0
Emc Networker 9.2
Emc Networker 9.1
Emc Networker 9.0
Emc Avamar Server 7.1-145
Emc Avamar Server 7.1-21
Emc Avamar Server 7.5-183
Emc Avamar Server 7.4-58
Emc Avamar Server 7.2-32
Emc Avamar Server 7.1-370
2 Articles
8.8
CVSSv3
CVE-2017-15549
An issue exists in EMC Avamar Server 7.1.x, 7.2.x, 7.3.x, 7.4.x, 7.5.0; EMC NetWorker Virtual Edition (NVE) 9.0.x, 9.1.x, 9.2.x; and EMC Integrated Data Protection Appliance 2.0. A remote authenticated malicious user with low privileges could potentially upload arbitrary maliciou...
Emc Avamar Server 7.3-125
Emc Avamar Server 7.2-309
Emc Avamar Server 7.2-401
Emc Avamar Server 7.2-32
Emc Avamar Server 7.1-302
Emc Networker 9.2
Emc Avamar Server 7.4-58
Emc Avamar Server 7.3-226
Emc Avamar Server 7.1-370
Emc Avamar Server 7.1-21
Emc Networker 9.1
Emc Networker 9.0
Emc Avamar Server 7.5-183
Emc Avamar Server 7.4-242
Emc Integrated Data Protection Appliance 2.0
Emc Avamar Server 7.3-211
Emc Avamar Server 7.3-233
Emc Avamar Server 7.1-145
2 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »