Published: 07/08/2017 Updated: 06/12/2021

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 905

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

It exists that an issue in the session logic in Unitrends Backup (UB) prior to 10.0.0 allowed using the LOGDIR environment variable during a web session to elevate an existing low-privilege user to root privileges. A remote attacker with existing low-privilege credentials could then execute arbitrary commands with root privileges.

Vulnerable Product	Search on Vulmon	Subscribe to Product
kaseya unitrends backup

# Exploit Title: Authenticated lowpriv RCE for Unitrends UEB 91 # Date: 08/08/2017 # Exploit Authors: Benny Husted, Jared Arave, Cale Smith # Contact: twittercom/iotennui || twittercom/BennyHusted || twittercom/0xC413 # Vendor Homepage: wwwunitrendscom/ # Software Link: wwwunitrendscom/download/enterp ...

Unitrends UEB version 91 suffers from a privilege escalation vulnerability ...

NVD-CWE-noinfo https://support.unitrends.com/UnitrendsBackup/s/article/000005757 https://nvd.nist.gov https://www.exploit-db.com/exploits/42959/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-12479

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect