Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2015-7709
arkeia
backup agent
western digital
cve-2015-7709
arkfs_exec_cmd
remote execution
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
Low
0.834 High
EPSS
Percentile
98.5%
The arkeiad daemon in the Arkeia Backup Agent in Western Digital Arkeia 11.0.12 and earlier allows remote attackers to bypass authentication and execute arbitrary commands via a series of crafted requests involving the ARKFS_EXEC_CMD operation.
Affected configurations
Node
arkeiawestern_digital_arkeiaRange≤11.0.12
| CPE | Name | Operator | Version |
|---|---|---|---|
| arkeia:western_digital_arkeia | arkeia western digital arkeia | le | 11.0.12 |
Related
nvd
nvd
CVE-2015-7709
2015-10-05 15:59:06
openvas
openvas
Western Digital Arkeia <= v11.0.12 RCE Vulnerability
2016-08-16 00:00:00
prion
prion
Authentication flaw
2015-10-05 15:59:00
checkpoint_advisories
checkpoint_advisories
cvelist
cvelist
CVE-2015-7709
2022-10-03 16:15:56
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
Low
0.834 High
EPSS
Percentile
98.5%
Related for CVE-2015-7709