Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2017-16673
HistoryNov 09, 2017 - 4:29 a.m.

Information disclosure

2017-11-0904:29:00
PRIOn knowledge base
www.prio-n.com
2

6.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.2%

JSON

Datto Backup Agent 1.0.6.0 and earlier does not authenticate incoming connections. This allows an attacker to impersonate a Datto Backup Appliance to “pair” with the agent and issue requests to this agent, if the attacker can reach the agent on TCP port 25566 or 25568, and send unspecified “specific information” by which the agent identifies a network device that is “appearing to be a valid Datto.”

CPENameOperatorVersion
backup_agentle1.0.6.0

Related

nvd 2
cvelist 2
cve 2
prion 1
zdt 1
nvd
nvd
CVE-2017-16673
2017-11-09 04:29:00
CVE-2017-16674
2017-11-09 04:29:00
cvelist
cvelist
CVE-2017-16673
2022-10-03 16:23:21
CVE-2017-16674
2022-10-03 16:23:23
cve
cve
CVE-2017-16673
2022-10-03 16:23:21
CVE-2017-16674
2022-10-03 16:23:23
prion
prion
Command injection
2017-11-09 04:29:00
zdt
zdt
Datto Windows Agent Remote Code Execution Vulnerability
2017-11-11 00:00:00

6.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.2%

JSON
Related for PRION:CVE-2017-16673
nvd2cvelist2cve2prion1zdt1