Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2017-16673
HistoryOct 03, 2022 - 4:23 p.m.

CVE-2017-16673

2022-10-0316:23:21
mitre
www.cve.org
datto
backup agent
authentication
vulnerability
tcp port .

5.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.2%

JSON

Datto Backup Agent 1.0.6.0 and earlier does not authenticate incoming connections. This allows an attacker to impersonate a Datto Backup Appliance to “pair” with the agent and issue requests to this agent, if the attacker can reach the agent on TCP port 25566 or 25568, and send unspecified “specific information” by which the agent identifies a network device that is “appearing to be a valid Datto.”

Related

prion 2
cve 2
nvd 2
zdt 1
cvelist 1
prion
prion
Information disclosure
2017-11-09 04:29:00
Command injection
2017-11-09 04:29:00
cve
cve
CVE-2017-16673
2022-10-03 16:23:21
CVE-2017-16674
2022-10-03 16:23:23
nvd
nvd
CVE-2017-16673
2017-11-09 04:29:00
CVE-2017-16674
2017-11-09 04:29:00
zdt
zdt
Datto Windows Agent Remote Code Execution Vulnerability
2017-11-11 00:00:00
cvelist
cvelist
CVE-2017-16674
2022-10-03 16:23:23

5.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.2%

JSON
Related for CVELIST:CVE-2017-16673
prion2cve2nvd2zdt1cvelist1