49 matches found
ExaGrid Arbitrary Command Execution Vulnerability
ExaGrid is a Linux-based backup and recovery storage appliance from ExaGrid, Inc. that provides deduplication capabilities. A security vulnerability exists in ExaGrid, which can be exploited by an attacker to take full control of the device and execute arbitrary commands with root privileges...
ExaGrid Unauthorized Access Vulnerability
ExaGrid is a Linux-based backup and recovery storage appliance from ExaGrid, Inc. that provides deduplication capabilities. A security vulnerability exists in ExaGrid, which can be exploited by attackers to gain unauthorized access...
ExaGrid Known SSH Key / Default Password
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'net/ssh' class MetasploitModule 'ExaGrid Known SSH Key and Default Password', 'Description' = %q ExaGrid ships a public/private key pair on...
ExaGrid Private SSH Key Removed
ExaGrid has removed a private SSH key and weak, hardcoded credentials shipping with all of its disk-based storage appliances. Updated firmware has been available since March 24 and storage and security managers are urged to update devices to version 4.8 P26. Researcher James Lee of Rapid7 private...
ExaGrid Known SSH Key and Default Password
ExaGrid ships a public/private key pair on their backup appliances to allow passwordless authentication to other ExaGrid appliances. Since the private key is easily retrievable, an attacker can use it to gain unauthorized remote access as root. Additionally, this module will attempt to use the...
ExaGrid - Known SSH Key and Default Password (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'net/ssh' class MetasploitModule 'ExaGrid Known SSH Key and Default Password', 'Description' = %q ExaGrid ships a public/private key pair on...
ExaGrid Default Credentials (HTTP)
The remote ExaGrid device has default credentials set. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Exagrid Known Private Key Vulnerability (SSH) - Active Check
The Exagrid device is using a known SSH private key. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Backup Copy Job Failures when using ExaGrid de-duplicating storage
Challenge Backup Copy Jobs can fail when writing to ExaGrid storage. Cause De-duplicating storage can incorrectly update existing backup files during Veeam "merge" operation. Solution Make sure your ExaGrid Storage firmware version is 4.7.0 P52 or newer. For additional information please contact...