Lucene search
PRIOn knowledge basePRION:CVE-2017-12478HistoryAug 07, 2017 - 3:29 p.m.
Authentication flaw
2017-08-0715:29:00
PRIOn knowledge base
www.prio-n.com
8
It was discovered that the api/storage web interface in Unitrends Backup (UB) before 10.0.0 has an issue in which one of its input parameters was not validated. A remote attacker could use this flaw to bypass authentication and execute arbitrary commands with root privilege on the target system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| unitrends_backup | lt | 10.0 |
Related
zdt
zdt
Unitrends UEB 9 HTTP API/Storage Remote Root Exploit
2017-10-22 00:00:00
Unitrends UEB 9.1 - Authentication Bypass / Remote Command Execution Exploit
2017-10-06 00:00:00
Unitrends UEB HTTP API Remote Code Execution Exploit
2018-10-06 00:00:00
metasploit
metasploit
Unitrends UEB http api remote code execution
2018-09-10 02:41:01
cve
cve
CVE-2017-12478
2017-08-07 15:29:00
seebug
seebug
Unitrends UEB 9 HTTP API/Storage Remote Root(CVE-2017-12478)
2017-10-24 00:00:00
packetstorm
packetstorm
Unitrends UEB 9.1 Authentication Bypass / Remote Command Execution
2017-10-04 00:00:00
Unitrends UEB 9 HTTP API/Storage Remote Root
2017-10-21 00:00:00
Unitrends UEB HTTP API Remote Code Execution
2018-10-05 00:00:00
exploitpack
exploitpack
Unitrends UEB 9.1 - Authentication Bypass Remote Command Execution
2017-08-08 00:00:00
cvelist
cvelist
CVE-2017-12478
2017-08-07 15:00:00
nvd
nvd
CVE-2017-12478
2017-08-07 15:29:00
checkpoint_advisories
checkpoint_advisories
Kaseya Unitrends Backup Remote Code Execution (CVE-2017-12478)
2022-05-17 00:00:00
exploitdb
exploitdb
Unitrends UEB 9 - http api/storage Remote Root (Metasploit)
2017-10-23 00:00:00
Unitrends UEB 9.1 - Authentication Bypass / Remote Command Execution
2017-08-08 00:00:00
Unitrends UEB - HTTP API Remote Code Execution (Metasploit)
2018-10-08 00:00:00
openvas
openvas
Unitrends < 10.0.0 Multiple Vulnerabilities
2017-10-23 00:00:00