Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
backup vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2007-5327
Stack-based buffer overflow in the RPC interface for the Message Engine (mediasvr.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote malicious users to execute arbitrary code via a long argument in the 0x10d opnum.
Broadcom Brightstor Arcserve Backup 11
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Brightstor Enterprise Backup 10.5
Broadcom Brightstor Arcserve Backup 10.5
Broadcom Brightstor Arcserve Backup 11.5
Broadcom Brightstor Arcserve Backup 9.01
890
VMScore
CVE-2007-5328
The Message Engine RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows malicious users to execute arbitrary code by using certain "insecure method calls" to modify the file system and registry, aka "Privileged funct...
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Brightstor Arcserve Backup 11.5
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Arcserve Backup 10.5
Broadcom Brightstor Arcserve Backup 11
Broadcom Brightstor Enterprise Backup 10.5
890
VMScore
CVE-2007-5330
The cadbd RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote malicious users to (1) execute arbitrary code via stack-based buffer overflows in unspecified RPC procedures, and (2) trigger memory corruption related to the us...
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Brightstor Arcserve Backup 11.5
Broadcom Brightstor Arcserve Backup 10.5
Broadcom Brightstor Arcserve Backup 11
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Enterprise Backup 10.5
1000
VMScore
CVE-2007-5332
Multiple unspecified vulnerabilities in (1) mediasvr and (2) caloggerd in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, have unknown impact and attack vectors related to memory corruption.
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Enterprise Backup 10.5
Broadcom Brightstor Arcserve Backup 10.5
Broadcom Brightstor Arcserve Backup 11
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Brightstor Arcserve Backup 11.5
1 EDB exploit
578
VMScore
CVE-2022-26500
Improper limitation of path names in Veeam Backup & Replication 9.5U3, 9.5U4,10.x, and 11.x allows remote authenticated users access to internal API functions that allows malicious users to upload and execute arbitrary code.
Veeam Veeam Backup \\& Replication 11.0.1.1261
Veeam Veeam Backup \\& Replication 10.0.1.4854
Veeam Veeam Backup \\& Replication 9.5.4.2615
Veeam Veeam Backup \\& Replication 9.5.0.1536
Veeam Veeam Backup \\& Replication
1 Github repository
1 Article
801
VMScore
CVE-2022-26504
Improper authentication in Veeam Backup & Replication 9.5U3, 9.5U4,10.x and 11.x component used for Microsoft System Center Virtual Machine Manager (SCVMM) allows attackers execute arbitrary code via Veeam.Backup.PSManager.exe
Veeam Veeam Backup \\& Replication 11.0.1.1261
Veeam Veeam Backup \\& Replication 10.0.1.4854
Veeam Veeam Backup \\& Replication 9.5.4.2615
Veeam Veeam Backup \\& Replication 9.5.0.1536
Veeam Veeam Backup \\& Replication
1 Github repository
1 Article
187
VMScore
CVE-2007-4656
backup-manager-upload in Backup Manager prior to 0.6.3 provides the FTP server hostname, username, and password as plaintext command line arguments during FTP uploads, which allows local users to obtain sensitive information by listing the process and its arguments, a different v...
Backup Manager Backup Manager
641
VMScore
CVE-2007-2766
lib/backup-methods.sh in Backup Manager prior to 0.7.6 provides the MySQL password as a plaintext command line argument, which allows local users to obtain this password by listing the process and its arguments, related to lib/backup-methods.sh.
Backup Manager Backup Manager
580
VMScore
CVE-2021-24155
The WordPress Backup and Migrate Plugin – Backup Guard WordPress plugin prior to 1.6.0 did not ensure that the imported files are of the SGBP format and extension, allowing high privilege users (admin+) to upload arbitrary files, including PHP ones, leading to RCE.
Backup-guard Backup Guard
383
VMScore
CVE-2017-10837
Cross-site scripting vulnerability in BackupGuard prior to version 1.1.47 allows an malicious user to inject arbitrary web script or HTML via unspecified vectors.
Backup-guard Backup Guard
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »