Lucene search
K

49 matches found

CNVD
CNVD
added 2016/04/13 12:0 a.m.1 views

ExaGrid Arbitrary Command Execution Vulnerability

ExaGrid is a Linux-based backup and recovery storage appliance from ExaGrid, Inc. that provides deduplication capabilities. A security vulnerability exists in ExaGrid, which can be exploited by an attacker to take full control of the device and execute arbitrary commands with root privileges...

10CVSS7.6AI score0.72289EPSS
Exploits4References1
CNVD
CNVD
added 2016/04/13 12:0 a.m.2 views

ExaGrid Unauthorized Access Vulnerability

ExaGrid is a Linux-based backup and recovery storage appliance from ExaGrid, Inc. that provides deduplication capabilities. A security vulnerability exists in ExaGrid, which can be exploited by attackers to gain unauthorized access...

7.5CVSS7AI score0.74261EPSS
Exploits4References1
Packet Storm
Packet Storm
added 2016/04/09 12:0 a.m.60 views

ExaGrid Known SSH Key / Default Password

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'net/ssh' class MetasploitModule 'ExaGrid Known SSH Key and Default Password', 'Description' = %q ExaGrid ships a public/private key pair on...

0.5AI score0.74261EPSS
Exploits5
ThreatPost
ThreatPost
added 2016/04/07 11:11 a.m.10 views

ExaGrid Private SSH Key Removed

ExaGrid has removed a private SSH key and weak, hardcoded credentials shipping with all of its disk-based storage appliances. Updated firmware has been available since March 24 and storage and security managers are urged to update devices to version 4.8 P26. Researcher James Lee of Rapid7 private...

Exploits0References1
Metasploit
Metasploit
added 2016/04/07 9:17 a.m.85 views

ExaGrid Known SSH Key and Default Password

ExaGrid ships a public/private key pair on their backup appliances to allow passwordless authentication to other ExaGrid appliances. Since the private key is easily retrievable, an attacker can use it to gain unauthorized remote access as root. Additionally, this module will attempt to use the...

9.8CVSS8.4AI score0.74261EPSS
Exploits5
Exploit DB
Exploit DB
added 2016/04/07 12:0 a.m.46 views

ExaGrid - Known SSH Key and Default Password (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'net/ssh' class MetasploitModule 'ExaGrid Known SSH Key and Default Password', 'Description' = %q ExaGrid ships a public/private key pair on...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2016/04/07 12:0 a.m.881 views

ExaGrid Default Credentials (HTTP)

The remote ExaGrid device has default credentials set. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0
OpenVAS
OpenVAS
added 2016/04/07 12:0 a.m.21 views

Exagrid Known Private Key Vulnerability (SSH) - Active Check

The Exagrid device is using a known SSH private key. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8AI score
Exploits0
Veeam
Veeam
added 2015/06/01 12:0 a.m.17 views

Backup Copy Job Failures when using ExaGrid de-duplicating storage

Challenge Backup Copy Jobs can fail when writing to ExaGrid storage. Cause De-duplicating storage can incorrectly update existing backup files during Veeam "merge" operation. Solution Make sure your ExaGrid Storage firmware version is 4.7.0 P52 or newer. For additional information please contact...

7.1AI score
Exploits0
Rows per page
Query Builder