2 matches found
Extensis Portfolio Multiple Vulnerabilities (CVE-2022-24251; CVE-2022-24252; CVE-2022-24253; CVE-2022-24254)
Multiple vulnerabilities exist in Extensis Portfolio. Successful exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary commands on the affected system...
CVE-2022-24254
Affected software: Extensis Portfolio v4.0 (Backup/Restore Archive component). Issue: Unrestricted file upload via a crafted ZIP file that enables remote code execution. Root cause: lack of proper validation/constraints on uploaded ZIP contents within the Backup/Restore Archive module. Impact: re...