Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arcserve vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4399
Unspecified vulnerability in the database engine service in asdbapi.dll in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1 through r12.0 allows remote malicious users to cause a denial of service (crash) via a crafted request, related to "insufficient validati...
Ca Business Protection Suite R2
Ca Arcserve Backup R11.1
Ca Arcserve Backup R11.5
Broadcom Arcserve Backup R12.0
Broadcom Business Protection Suite R2
Broadcom Server Protection Suite R2
NA
CVE-2007-5326
Multiple buffer overflows in (1) RPC and (2) rpcx.dll in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allow remote malicious users to execute arbitrary code via unspecified vectors.
Ca Brightstor Arcserve Backup 11
Ca Business Protection Suite 2.0
Broadcom Brightstor Arcserve Backup 11.5
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Enterprise Backup 10.5
Broadcom Business Protection Suite 2.0
Broadcom Server Protection Suite 2
NA
CVE-2007-5329
Unspecified vulnerability in dbasvr in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, has unknown impact and attack vectors related to memory corruption.
Ca Brightstor Arcserve Backup 11
Ca Business Protection Suite 2.0
Broadcom Brightstor Arcserve Backup 11.5
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Enterprise Backup 10.5
Broadcom Business Protection Suite 2.0
Broadcom Server Protection Suite 2
NA
CVE-2007-5331
Queue.dll for the message queuing service (LQserver.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote malicious users to execute arbitrary code via a malformed ONRPC protocol request for operation 0x76, which causes ARCserve Bac...
Ca Brightstor Arcserve Backup 11
Ca Business Protection Suite 2.0
Broadcom Brightstor Arcserve Backup 11.5
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Enterprise Backup 10.5
Broadcom Business Protection Suite 2.0
Broadcom Server Protection Suite 2
9.8
CVSSv3
CVE-2023-41999
An authentication bypass exists in Arcserve UDP prior to version 9.2. An unauthenticated, remote attacker can obtain a valid authentication identifier that allows them to authenticate to the management console and perform tasks that require authentication.
Arcserve Udp
9.8
CVSSv3
CVE-2023-42000
Arcserve UDP before 9.2 contains a path traversal vulnerability in com.ca.arcflash.ui.server.servlet.FileHandlingServlet.doUpload(). An unauthenticated remote attacker can exploit it to upload arbitrary files to any location on the file system where the UDP agent is installed.
Arcserve Udp
9.8
CVSSv3
CVE-2023-26258
Arcserve UDP up to and including 9.0.6034 allows authentication bypass. The method getVersionInfo at WebServiceImpl/services/FlashServiceImpl leaks the AuthUUID token. This token can be used at /WebServiceImpl/services/VirtualStandbyServiceImpl to obtain a valid session. This ses...
Arcserve Udp
1 Github repository
9.8
CVSSv3
CVE-2023-41998
Arcserve UDP before 9.2 contained a vulnerability in the com.ca.arcflash.rps.webservice.RPSService4CPMImpl interface. A routine exists that allows an malicious user to upload and execute arbitrary files.
Arcserve Udp
7.5
CVSSv3
CVE-2020-27858
This vulnerability allows remote malicious users to disclose sensitive information on affected installations of CA Arcserve D2D 16.5. Authentication is not required to exploit this vulnerability. The specific flaw exists within the getNews method. Due to the improper restriction ...
Arcserve D2d 16.5
NA
CVE-1999-1049
ARCserve NT agents use weak encryption (XOR) for passwords, which allows remote malicious users to sniff the authentication request to port 6050 and decrypt the password.
Broadcom Arcserve Backup
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »