Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2023-26258

Published: 03/07/2023 Updated: 12/07/2023
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Arcserve

Vulnerability Summary

Arcserve UDP up to and including 9.0.6034 allows authentication bypass. The method getVersionInfo at WebServiceImpl/services/FlashServiceImpl leaks the AuthUUID token. This token can be used at /WebServiceImpl/services/VirtualStandbyServiceImpl to obtain a valid session. This session can be used to execute any task as administrator.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

arcserve udp

Github Repositories

https://github.com/mdsecactivebreach/CVE-2023-26258-ArcServe

The TL; DR; If you are in the network you can scan for instances configured by default using ArcServeRadarpy I tried to port it to C# but couldn't, feel free to do it if you know how :) c:\Users\vagrant\Desktop>python ArcServeRadarpy "Ethernet 2" 6969 1921685620 -=[ ArcServe Finder - @TheXC3LL - MDSec ]=- [*] Starting to monitor [*

References

CWE-863https://www.arcserve.com/products/arcserve-udphttps://www.mdsec.co.uk/2023/06/cve-2023-26258-remote-code-execution-in-arcserve-udp-backup/https://support.arcserve.com/s/article/KB000015720?language=en_UShttps://nvd.nist.govhttps://github.com/mdsecactivebreach/CVE-2023-26258-ArcServe
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333CVE-2024-33901CVE-2024-36001CVE-2024-2835firewallXPath injectionauthentication bypassCVE-2024-22120CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook