Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unitrends vulnerabilities and exploits
(subscribe to this query)
570
VMScore
CVE-2021-43039
An issue exists in Kaseya Unitrends Backup Appliance prior to 10.5.5. The Samba file sharing service allowed anonymous read/write access.
Kaseya Unitrends Backup
578
VMScore
CVE-2021-43040
An issue exists in Kaseya Unitrends Backup Appliance prior to 10.5.5. The privileged vaultServer could be leveraged to create arbitrary writable files, leading to privilege escalation.
Kaseya Unitrends Backup
578
VMScore
CVE-2021-43041
An issue exists in Kaseya Unitrends Backup Appliance prior to 10.5.5. A crafted HTTP request could induce a format string vulnerability in the privileged vaultServer application.
Kaseya Unitrends Backup
668
VMScore
CVE-2021-43042
An issue exists in Kaseya Unitrends Backup Appliance prior to 10.5.5. A buffer overflow existed in the vaultServer component. This was exploitable by a remote unauthenticated attacker.
Kaseya Unitrends Backup
356
VMScore
CVE-2021-43043
An issue exists in Kaseya Unitrends Backup Appliance prior to 10.5.5. The apache user could read arbitrary files such as /etc/shadow by abusing an insecure Sudo rule.
Kaseya Unitrends Backup
801
VMScore
CVE-2021-40387
An issue exists in the server software in Kaseya Unitrends Backup Software prior to 10.5.5-2. There is authenticated remote code execution.
Kaseya Unitrends Backup Software
755
VMScore
CVE-2014-3139
recoveryconsole/bpl/snmpd.php in Unitrends Enterprise Backup 7.3.0 allows remote malicious users to bypass authentication by setting the auth parameter to a certain string.
Unitrends Enterprise Backup 7.3.0
1 EDB exploit
801
VMScore
CVE-2021-40385
An issue exists in the server software in Kaseya Unitrends Backup Software prior to 10.5.5-2. There is a privilege escalation from read-only user to admin.
Kaseya Unitrends Backup Software
1000
VMScore
CVE-2014-3008
Unitrends Enterprise Backup 7.3.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the comm parameter to recoveryconsole/bpl/snmpd.php.
Unitrends Enterprise Backup 7.3.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3