Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
secure backup vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv2
CVE-2014-5576
The Avira Secure Backup (aka com.avira.avirabackup) application 1.2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Avira Avira Secure Backup 1.2.3
7.5
CVSSv2
CVE-2021-42013
It was found that the fix for CVE-2021-41773 in Apache HTTP Server 2.4.50 was insufficient. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by t...
Apache Http Server 2.4.49
Apache Http Server 2.4.50
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Oracle Jd Edwards Enterpriseone Tools
Oracle Secure Backup
Netapp Cloud Backup -
2 Metasploit modules
72 Github repositories
1 Article
7.5
CVSSv2
CVE-2021-26691
In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server could cause a heap overflow
Apache Http Server
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Zfs Storage Appliance Kit 8.8
Oracle Secure Backup
Netapp Cloud Backup -
1 Github repository
9
CVSSv2
CVE-2021-27878
An issue exists in Veritas Backup Exec prior to 21.2. The communication between a client and an Agent requires successful authentication, which is typically completed over a secure TLS communication. However, due to a vulnerability in the SHA Authentication scheme, an attacker is...
Veritas Backup Exec
1 Github repository
7.5
CVSSv2
CVE-2021-27876
An issue exists in Veritas Backup Exec prior to 21.2. The communication between a client and an Agent requires successful authentication, which is typically completed over a secure TLS communication. However, due to a vulnerability in the SHA Authentication scheme, an attacker is...
Veritas Backup Exec
1 Github repository
5
CVSSv2
CVE-2017-15998
In the "NQ Contacts Backup & Restore" application 1.1 for Android, DES encryption with a static key is used to secure transmitted contact data. This makes it easier for remote malicious users to obtain cleartext information by sniffing the network.
Nq Contacts Backup \\& Restore 1.1
2.1
CVSSv2
CVE-2017-15997
In the "NQ Contacts Backup & Restore" application 1.1 for Android, RC4 encryption is used to secure the user password locally stored in shared preferences. Because there is a static RC4 key, an attacker can gain access to user credentials more easily by leveraging a...
Nq Contacts Backup \\& Restore 1.1
10
CVSSv2
CVE-2007-2863
Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote malicious users to execute arbitrary code via a long filename in a .CAB file.
Broadcom Anti-virus For The Enterprise 8
Broadcom Common Services 1.0
Broadcom Common Services 1.1
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Enterprise Backup 10.5
Broadcom Brightstor Arcserve Backup 11.5
Ca Brightstor Arcserve Backup 11
Broadcom Common Services 2.2
Broadcom Common Services 3.0
Ca Anti-virus For The Enterprise 8
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Common Services 2.0
Broadcom Common Services 2.1
7.2
CVSSv2
CVE-2000-1009
dump in Red Hat Linux 6.2 trusts the pathname specified by the RSH environmental variable, which allows local users to obtain root privileges by modifying the RSH variable to point to a Trojan horse program.
Redhat Linux 6.2
Trustix Secure Linux 1.1
2 EDB exploits
9.3
CVSSv2
CVE-2007-2864
Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote malicious users to execute arbitrary code via a large invalid value of the coffFiles field in a .CAB file.
Broadcom Brightstor Arcserve Backup 10.5
Broadcom Brightstor Arcserve Backup 11
Broadcom Common Services 2.2
Broadcom Common Services 3.0
Broadcom Etrust Ez Armor 1.0
Broadcom Etrust Ez Armor 2.0
Broadcom Internet Security Suite 3.0
Ca Protection Suites R2
Ca Protection Suites R3
Broadcom Anti-virus For The Enterprise 8
Broadcom Common Services 2.0
Broadcom Common Services 2.1
Broadcom Etrust Ez Antivirus 6.1
Broadcom Etrust Ez Antivirus 7.0
Broadcom Internet Security Suite 1.0
Broadcom Internet Security Suite 2.0
Broadcom Common Services 1.0
Broadcom Common Services 1.1
Broadcom Etrust Antivirus Gateway 7.1
Broadcom Etrust Antivirus Sdk
Ca Etrust Secure Content Manager 8.0
Broadcom Integrated Threat Management 8.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »