Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-10303

Malicious code in bioql PyPI...

8.6CVSS6.6AI score0.00512EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/04/08 12:0 a.m.13 views

CVE-2025-32406

An XXE issue in the Director NBR component in NAKIVO Backup & Replication 10.3.x through 11.0.1 before 11.0.2 allows remote attackers fetch and parse the XML response...

8.6CVSS7.3AI score0.00512EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/06 1:8 a.m.31 views

CVE-2024-48248

NAKIVO Backup & Replication before 11.0.0.88174 allows absolute path traversal for reading files via getImageByPath to /c/router this may lead to remote code execution across the enterprise because PhysicalDiscovery has cleartext credentials...

8.6CVSS8.1AI score0.9408EPSS
Exploits2References1
NVD
NVD
added 2025/03/04 8:15 a.m.36 views

CVE-2024-48248

NAKIVO Backup & Replication before 11.0.0.88174 allows absolute path traversal for reading files via getImageByPath to /c/router this may lead to remote code execution across the enterprise because PhysicalDiscovery has cleartext credentials...

8.6CVSS0.9408EPSS
Exploits2References4
CNNVD
CNNVD
added 2025/03/04 12:0 a.m.5 views

Nakivo Backup & Replication 安全漏洞

Nakivo Backup & Replication is a reliable, fast and affordable virtual machine backup solution from Nakivo, U.S.A. NAKIVO Backup & Replication provides reliable, fast and affordable virtual machine data protection for VMware environments. Specifically designed for virtualization, the product...

8.6CVSS9.8AI score0.9408EPSS
Exploits2References4
Vulnrichment
Vulnrichment
added 2025/03/04 12:0 a.m.13 views

CVE-2024-48248

NAKIVO Backup & Replication before 11.0.0.88174 allows absolute path traversal for reading files via getImageByPath to /c/router this may lead to remote code execution across the enterprise because PhysicalDiscovery has cleartext credentials...

8.6CVSS9AI score0.9408EPSS
Exploits2References2
CVE
CVE
added 2025/03/04 12:0 a.m.204 views

CVE-2024-48248

CVE-2024-48248 affects NAKIVO Backup & Replication prior to 11.0.0.88174. The vulnerability is an absolute path traversal via getImageByPath to /c/router, leading to unauthenticated arbitrary file read with potential remote code execution across the enterprise when cleartext credentials are expos...

8.6CVSS9AI score0.9408EPSS
In wildExploits2References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.9 views

NAKIVO Backup & Replication < 11.0.0.88174 Arbitrary File Read

NAKIVO Backup & Replication versions prior to 11.0.0.88174 are vulnerable are affected by a vulnerability allowing an unauthenticated attacker to read arbitrary files on the system via a specially crafted request. No source data...

8.6CVSS7.2AI score0.9408EPSS
Exploits2References2
NVD
NVD
added 2020/09/24 9:15 p.m.25 views

CVE-2020-15851

Lack of access control in Nakivo Backup & Replication Transporter version 9.4.0.r43656 allows remote users to access unencrypted backup repositories and the Nakivo Controller configuration via a network accessible transporter service. It is also possible to create or delete backup repositories...

9.8CVSS0.01539EPSS
Exploits1References2
NVD
NVD
added 2020/09/24 9:15 p.m.13 views

CVE-2020-15850

Insecure permissions in Nakivo Backup & Replication Director version 9.4.0.r43656 on Linux allow local users to access the Nakivo Director web interface and gain root privileges. This occurs because the database containing the users of the web application and the password-recovery secret value is...

7.8CVSS0.00522EPSS
Exploits1References2
Cvelist
Cvelist
added 2020/09/24 8:24 p.m.29 views

CVE-2020-15851

Lack of access control in Nakivo Backup & Replication Transporter version 9.4.0.r43656 allows remote users to access unencrypted backup repositories and the Nakivo Controller configuration via a network accessible transporter service. It is also possible to create or delete backup repositories...

9.3AI score0.01539EPSS
Exploits1References2
Cvelist
Cvelist
added 2020/09/24 8:23 p.m.18 views

CVE-2020-15850

Insecure permissions in Nakivo Backup & Replication Director version 9.4.0.r43656 on Linux allow local users to access the Nakivo Director web interface and gain root privileges. This occurs because the database containing the users of the web application and the password-recovery secret value is...

7.7AI score0.00522EPSS
Exploits1References2
CVE
CVE
added 2020/09/24 8:23 p.m.51 views

CVE-2020-15850

Nakivo Backup & Replication Director 9.4.0.r43656 on Linux exposes insecure permissions: the web app user database and password-recovery secret are readable, enabling local users to access the Nakivo Director web interface and gain root privileges. No remediation details are provided in the suppl...

7.8CVSS7.5AI score0.00522EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder