Lucene search
K

51 matches found

Nuclei
Nuclei
added 15 hours ago31 views

Arcserve Unified Data Protection - Authentication Bypass

An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.EdgeLoginServiceImpl.doLogin function within wizardLogin. id: CVE-2024-0799 info: name: Arcserve Unified Data Protection -...

9.8CVSS7.4AI score0.04342EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/09 12:10 p.m.8 views

CVE-2018-18657

An issue was discovered in Arcserve Unified Data Protection UDP through 6.5 Update 4. There is a DDI-VRT-2018-18 Unauthenticated Sensitive Information Disclosure via /gateway/services/EdgeServiceImpl issue...

7.5CVSS6.9AI score0.01337EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-10375

Malware in sbrugna...

7.5CVSS7.6AI score0.01827EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-10373

Malware in sbrugna...

7.5CVSS7.6AI score0.01337EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-10374

Malware in sbrugna...

7.5CVSS7.6AI score0.01337EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-10376

Malware in sbrugna...

6.1CVSS6.3AI score0.00897EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-16586

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.04342EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-16587

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.01034EPSS
Exploits1References1
OSV
OSV
added 2025/08/27 10:15 p.m.3 views

CVE-2025-34522

A heap-based buffer overflow vulnerability exists in the input parsing logic of Arcserve Unified Data Protection UDP. This flaw can be triggered without authentication by sending specially crafted input to the target system. Improper bounds checking allows an attacker to overwrite heap memory,...

9.8CVSS6.2AI score0.00523EPSS
Exploits0References1
NVD
NVD
added 2025/08/27 10:15 p.m.7 views

CVE-2025-34521

A reflected cross-site scripting XSS vulnerability exists in the web interface of the Arcserve Unified Data Protection UDP, where unsanitized user input is improperly reflected in HTTP responses. This flaw allows remote attackers with low privileges to craft malicious links that, when visited by...

5.4CVSS0.00197EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/08/27 9:19 p.m.5 views

CVE-2025-34521

A reflected cross-site scripting XSS vulnerability exists in the web interface of the Arcserve Unified Data Protection UDP, where unsanitized user input is improperly reflected in HTTP responses. This flaw allows remote attackers with low privileges to craft malicious links that, when visited by...

5.4CVSS5.9AI score0.00197EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/27 9:19 p.m.2 views

CVE-2025-34523 Arcserve UDP < 10.2 Pre-Authentication Heap Overflow

A heap-based buffer overflow vulnerability exists in the network-facing input handling routines of Arcserve Unified Data Protection UDP. This flaw is reachable without authentication and results from improper bounds checking when processing attacker-controlled input. By sending specially crafted...

9.2CVSS6.5AI score0.00499EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/27 12:0 a.m.4 views

Arcserve Unified Data Protection 安全漏洞

Arcserve Unified Data Protection is Arcserve's all-in-one data and ransomware protection solution. A security vulnerability exists in Arcserve Unified Data Protection versions prior to 10.2 that stems from reflective cross-site scripting and could lead to session hijacking...

5.4CVSS6AI score0.00197EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 1:11 p.m.6 views

CVE-2018-18660

An issue was discovered in Arcserve Unified Data Protection UDP through 6.5 Update 4. There is a DDI-VRT-2018-21 Reflected Cross-site Scripting via /authenticationendpoint/domain.jsp issue...

6.1CVSS6.7AI score0.00897EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:52 a.m.13 views

CVE-2018-18658

An issue was discovered in Arcserve Unified Data Protection UDP through 6.5 Update 4. There is a DDI-VRT-2018-20 Unauthenticated Sensitive Information Disclosure via /UDPUpdates/Config/FullUpdateSettings.xml issue...

7.5CVSS6.9AI score0.01337EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:35 a.m.8 views

CVE-2018-18659

An issue was discovered in Arcserve Unified Data Protection UDP through 6.5 Update 4. There is a DDI-VRT-2018-19 Unauthenticated XXE in /management/UdpHttpService issue...

7.5CVSS7AI score0.01827EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/04 11:6 p.m.9 views

CVE-2024-0799

An authentication bypass vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in the edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.EdgeLoginServiceImpl.doLogin function within wizardLogin...

9.8CVSS7.2AI score0.04342EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/04 11:6 p.m.5 views

CVE-2024-0801

A denial of service vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in ASNative.dll...

7.5CVSS6.9AI score0.41843EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/04 10:57 p.m.9 views

CVE-2024-0800

A path traversal vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.servlet.ImportNodeServlet...

8.8CVSS7AI score0.01034EPSS
Exploits1References1
NVD
NVD
added 2024/03/13 7:15 p.m.16 views

CVE-2024-0800

A path traversal vulnerability exists in Arcserve Unified Data Protection 9.2 and 8.1 in edge-app-base-webui.jar!com.ca.arcserve.edge.app.base.ui.server.servlet.ImportNodeServlet...

8.8CVSS8.7AI score0.01034EPSS
Exploits1References1
Rows per page
Query Builder