Lucene search
+L

33 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:32 a.m.10 views

CVE-2023-27532

Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts...

7.5CVSS7.5AI score0.7761EPSS
Exploits4References1
Cvelist
Cvelist
added 2025/03/01 7:24 a.m.11 views

CVE-2024-13911 Database Backup and check Tables Automated With Scheduler 2024 <= 2.35 - Authenticated (Administrator+) Sensitive Information Exposure

The Database Backup and check Tables Automated With Scheduler 2024 plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.35 via the /dashboard/backup.php file. This makes it possible for authenticated attackers, with Administrator-level acces...

7.2CVSS0.00544EPSS
Exploits0References7
NVD
NVD
added 2025/01/27 10:15 p.m.39 views

CVE-2025-24104

This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.4. Restoring a maliciously crafted backup file may lead to modification of protected system files...

5.5CVSS0.01497EPSS
Exploits0References3
OSV
OSV
added 2024/12/23 7:10 p.m.11 views

BIT-DISCOURSE-2024-53991 Potential Backup file leaked via Nginx in Discourse

Discourse is an open source platform for community discussion. This vulnerability only impacts Discourse instances configured to use FileStore::LocalStore which means uploads and backups are stored locally on disk. If an attacker knows the name of the Discourse backup file, the attacker can trick...

7.5CVSS7.2AI score0.25431EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2023/02/14 10:12 a.m.55 views

A CISOs Practical Guide to Storage and Backup Ransomware Resiliency

One thing is clear. The "business value" of data continues to grow, making it an organization's primary piece of intellectual property. From a cyber risk perspective, attacks on data are the most prominent threat to organizations. Regulators, cyber insurance firms, and auditors are paying much...

0.2AI score
Exploits0
Vulnrichment
Vulnrichment
added 2022/09/28 12:0 a.m.6 views

CVE-2022-39251 Matrix Javascript SDK vulnerable to Olm/Megolm protocol confusion

Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript. Prior to version 19.7.0, an attacker cooperating with a malicious homeserver can construct messages that legitimately appear to have come from another person, without any indication such as a grey shield. Additionally, a...

8.6CVSS8.5AI score0.00913EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/06/24 4:15 p.m.3 views

CVE-2022-29330

Missing access control in the backup system of Telesoft VitalPBX before 3.2.1 allows attackers to access the PJSIP and SIP extension credentials, cryptographic keys and voicemails files via unspecified vectors...

4.9CVSS5.9AI score0.00886EPSS
Exploits1References3
CVE
CVE
added 2020/12/23 2:10 a.m.72 views

CVE-2020-35658

CVE-2020-35658 affects SpamTitan before version 7.09. The vulnerability arises because backups are not encrypted, enabling attackers to tamper with backups and potentially impact data integrity. The NVD entry lists CVSS v2 base score 5.0 (MEDIUM) with network access, low attack complexity, and pa...

5.3CVSS5.3AI score0.00505EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2020/09/25 4:23 a.m.15 views

Privilege escalation

Pexip Infinity before 20.1 allows privilege escalation by restoring a system backup...

9CVSS7.2AI score0.01521EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/09/12 10:0 p.m.49 views

CVE-2015-9230

The CVE-2015-9230 entry relates to the BulletProof Security WordPress plugin. Affected component: admin/db-backup-security/db-backup-security.php. Root cause: cross-site scripting (XSS) vulnerability via the DBTablePrefix parameter in plugin versions prior to 0.52.5, exploitable by remote authent...

4.8CVSS4.7AI score0.01576EPSS
Exploits1References7Affected Software1
Citrix
Citrix
added 2017/01/18 12:0 a.m.10 views

FAQ: Cloud backup of XenMobile managed devices

Is the Worx data encrypted within the backup? If so what is the encryption level? Yes, as Xenmobile uses the iCloud services from Apple for backing up the data: iCloud secures your data by encrypting it when it's sent over the Internet, storing it in an encrypted format when kept on server review...

6.6AI score
Exploits0
securityvulns
securityvulns
added 2004/06/11 12:0 a.m.21 views

Edimax 7205APL

Vendor: Edimax Type: 7205APL Firmware: 2.40a-00 Kind of bug: Security Description: Normally a user called addmin, has to create a password on the Accesspoint. When you create a back-up of the settings of your Accesspoint, it will result in a config.bin file. Opening the file in Notepad gave the...

0.3AI score
Exploits0
Cvelist
Cvelist
added 2001/02/02 5:0 a.m.21 views

CVE-2001-0067

The installation of J-Pilot creates the .jpilot directory with the user's umask, which could allow local attackers to read other users' PalmOS backup information if their umasks are not securely set...

6AI score0.00341EPSS
Exploits0References3
Rows per page
Query Builder