Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
backup vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5327
Stack-based buffer overflow in the RPC interface for the Message Engine (mediasvr.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote malicious users to execute arbitrary code via a long argument in the 0x10d opnum.
Broadcom Brightstor Arcserve Backup 11
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Brightstor Enterprise Backup 10.5
Broadcom Brightstor Arcserve Backup 10.5
Broadcom Brightstor Arcserve Backup 11.5
Broadcom Brightstor Arcserve Backup 9.01
NA
CVE-2007-5328
The Message Engine RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows malicious users to execute arbitrary code by using certain "insecure method calls" to modify the file system and registry, aka "Privileged funct...
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Brightstor Arcserve Backup 11.5
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Arcserve Backup 10.5
Broadcom Brightstor Arcserve Backup 11
Broadcom Brightstor Enterprise Backup 10.5
NA
CVE-2007-5330
The cadbd RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote malicious users to (1) execute arbitrary code via stack-based buffer overflows in unspecified RPC procedures, and (2) trigger memory corruption related to the us...
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Brightstor Arcserve Backup 11.5
Broadcom Brightstor Arcserve Backup 10.5
Broadcom Brightstor Arcserve Backup 11
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Enterprise Backup 10.5
NA
CVE-2007-5332
Multiple unspecified vulnerabilities in (1) mediasvr and (2) caloggerd in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, have unknown impact and attack vectors related to memory corruption.
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Enterprise Backup 10.5
Broadcom Brightstor Arcserve Backup 10.5
Broadcom Brightstor Arcserve Backup 11
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Brightstor Arcserve Backup 11.5
1 EDB exploit
8.8
CVSSv3
CVE-2022-26500
Improper limitation of path names in Veeam Backup & Replication 9.5U3, 9.5U4,10.x, and 11.x allows remote authenticated users access to internal API functions that allows malicious users to upload and execute arbitrary code.
Veeam Veeam Backup \\& Replication 11.0.1.1261
Veeam Veeam Backup \\& Replication 10.0.1.4854
Veeam Veeam Backup \\& Replication 9.5.4.2615
Veeam Veeam Backup \\& Replication 9.5.0.1536
Veeam Veeam Backup \\& Replication
1 Github repository
1 Article
8.8
CVSSv3
CVE-2022-26504
Improper authentication in Veeam Backup & Replication 9.5U3, 9.5U4,10.x and 11.x component used for Microsoft System Center Virtual Machine Manager (SCVMM) allows attackers execute arbitrary code via Veeam.Backup.PSManager.exe
Veeam Veeam Backup \\& Replication 11.0.1.1261
Veeam Veeam Backup \\& Replication 10.0.1.4854
Veeam Veeam Backup \\& Replication 9.5.4.2615
Veeam Veeam Backup \\& Replication 9.5.0.1536
Veeam Veeam Backup \\& Replication
1 Github repository
1 Article
NA
CVE-2007-4656
backup-manager-upload in Backup Manager prior to 0.6.3 provides the FTP server hostname, username, and password as plaintext command line arguments during FTP uploads, which allows local users to obtain sensitive information by listing the process and its arguments, a different v...
Backup Manager Backup Manager
NA
CVE-2007-2766
lib/backup-methods.sh in Backup Manager prior to 0.7.6 provides the MySQL password as a plaintext command line argument, which allows local users to obtain this password by listing the process and its arguments, related to lib/backup-methods.sh.
Backup Manager Backup Manager
7.2
CVSSv3
CVE-2021-24155
The WordPress Backup and Migrate Plugin – Backup Guard WordPress plugin prior to 1.6.0 did not ensure that the imported files are of the SGBP format and extension, allowing high privilege users (admin+) to upload arbitrary files, including PHP ones, leading to RCE.
Backup-guard Backup Guard
6.1
CVSSv3
CVE-2017-10837
Cross-site scripting vulnerability in BackupGuard prior to version 1.1.47 allows an malicious user to inject arbitrary web script or HTML via unspecified vectors.
Backup-guard Backup Guard
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »