6 matches found
CVE-2018-18660
An issue was discovered in Arcserve Unified Data Protection UDP through 6.5 Update 4. There is a DDI-VRT-2018-21 Reflected Cross-site Scripting via /authenticationendpoint/domain.jsp issue...
CVE-2018-18658
An issue was discovered in Arcserve Unified Data Protection UDP through 6.5 Update 4. There is a DDI-VRT-2018-20 Unauthenticated Sensitive Information Disclosure via /UDPUpdates/Config/FullUpdateSettings.xml issue...
CVE-2018-18657
An issue was discovered in Arcserve Unified Data Protection UDP through 6.5 Update 4. There is a DDI-VRT-2018-18 Unauthenticated Sensitive Information Disclosure via /gateway/services/EdgeServiceImpl issue...
CVE-2018-18659
Arcserve UDP (Arcserve Unified Data Protection) up to version 6.5 Update 4 contains an unauthenticated XML External Entity (XXE) issue in the /management/UdpHttpService endpoint (DDI-VRT-2018-19). This vulnerability is documented across multiple sources and affects UDP 6.5 Update 4 and earlier ve...
CVE-2018-18660
Arcserve UDP (Arcserve Unified Data Protection) up to 6.5 Update 4 is affected by a reflected Cross-Site Scripting (XSS) in /authenticationendpoint/domain.jsp (DDI-VRT-2018-21). Root cause is input handling leading to script injection; this is a client-side vulnerability that could affect users i...
CVE-2018-18660
An issue was discovered in Arcserve Unified Data Protection UDP through 6.5 Update 4. There is a DDI-VRT-2018-21 Reflected Cross-site Scripting via /authenticationendpoint/domain.jsp issue...